CVE-2021-34985

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley ContextCapture 10.18.0.232. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

CVE-2021-34985

CVE-2021-34985 affects Bentley ContextCapture (10.18.0.232). The issue is an out-of-bounds read during OBJ file parsing caused by insufficient validation of user-supplied data. This can allow an attacker who entices a target to open a malicious OBJ file to disclose memory contents; in combination...

CVE-2021-34984

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley ContextCapture 10.18.0.232. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

CVE-2021-34984

CVE-2021-34984 affects Bentley ContextCapture 10.18.0.232 and involves a parsing flaw in OBJ files where insufficient validation can cause a read past the end of an allocated buffer. This out-of-bounds read can enable an attacker to disclose memory contents and, in conjunction with other vulnerab...

CVE-2021-34881

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

Bentley View OBJ File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Bentley View is a free viewer from Bentley Systems, Inc. A security vulnerability exists in Bentley View OBJ file parsing that could be exploited by an attacker to disclose sensitive information about an affected Bentley View installation...

Bentley Systems Bentley View 缓冲区错误漏洞

Bentley View is a free viewer from Bentley Systems, Inc. A security vulnerability exists in Bentley View OBJ file parsing that could be exploited by an attacker to disclose sensitive information about an affected Bentley View installation...

Bentley View OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

Bentley ContextCapture OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley ContextCapture. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Bentley ContextCapture OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley ContextCapture. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Drawings SDK out-of-bounds read vulnerability (CNVD-2021-94906)

Drawings SDK is a development kit from the Open Design Alliance that gives you access to all .dwg and .dgn data via an object-oriented API that lets you create and edit any type of .dwg and .dgn drawing file. OBJ file reader in versions of Drawings SDK prior to 2022.11 An out-of-bounds read...

CVE-2021-43278

An Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK before 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the...

CVE-2021-43278

An Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK before 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the...

Open Design Alliance (ODA) ODAViewer OBJ File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA ODAViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

Open Design Alliance Drawings SDK 缓冲区错误漏洞

Drawings SDK is a development kit from the Open Design Alliance that gives you access to all .dwg and .dgn data via an object-oriented API that lets you create and edit any type of .dwg and .dgn drawing file. OBJ file reader in versions of Drawings SDK prior to 2022.11 An out-of-bounds read...

kernel: mm: memcontrol: slab: fix obtain a reference to a freeing memcg

In the Linux kernel, the following vulnerability has been resolved: mm: memcontrol: slab: fix obtain a reference to a freeing memcg Patch series "Use objcgroup APIs to charge kmem pages", v5. Since Roman's series "The new cgroup slab memory controller" applied. All slab objects are charged with t...

The vulnerability of the Siemens Solid Edge Viewer application, a tool set for design and simulation with Siemens Solid Edge, allows a malicious actor to execute arbitrary code.

The vulnerability of the Siemens Solid Edge Viewer application, a tool for design and simulation, is related to the use of memory after it is freed during OBJ file syntax analysis. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created malicio...

Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...