15 matches found
EUVD-2021-30496
Malicious code in bioql PyPI...
EUVD-2021-30221
Malicious code in bioql PyPI...
CVE-2021-44046
An out-of-bounds write vulnerability exists when reading U3D files in Open Design Alliance PRC SDK before 2022.11. An unchecked return value of a function verifying input data from a U3D file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the conte...
CVE-2021-44046
An out-of-bounds write vulnerability exists when reading U3D files in Open Design Alliance PRC SDK before 2022.11. An unchecked return value of a function verifying input data from a U3D file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the conte...
Out-of-bounds
An out-of-bounds write vulnerability exists when reading U3D files in Open Design Alliance PRC SDK before 2022.11. An unchecked return value of a function verifying input data from a U3D file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the conte...
CVE-2021-44046
An out-of-bounds write vulnerability exists when reading U3D files in Open Design Alliance PRC SDK before 2022.11. An unchecked return value of a function verifying input data from a U3D file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the conte...
CVE-2021-44046
The CVE-2021-44046 entry corresponds to an out-of-bounds write vulnerability in Open Design Alliance’s PRC SDK (pre-2022.11) triggered by parsing U3D files, caused by an unchecked return value while verifying U3D data. Public connected sources identify exploitation against affected components suc...
CVE-2021-43581
An Out-of-Bounds Read vulnerability exists when reading a U3D file using Open Design Alliance PRC SDK before 2022.11. The specific issue exists within the parsing of U3D files. Incorrect use of the LibJpeg source manager inside the U3D library, and crafted data in a U3D file, can trigger a read...
CVE-2021-43581
Open Design Alliance PRC SDK (and related ODAViewer components handling U3D) is affected by an Out-of-Bounds Read in the U3D file parser. The root cause is the incorrect use of the LibJpeg source manager inside the U3D library, with crafted U3D data triggering a read past the end of an allocated ...
CVE-2021-43279
An out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute...
Cross site scripting
An out-of-bounds read vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute...
CVE-2021-43279
An out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute...
CVE-2021-43279
CVE-2021-43279 is an out-of-bounds write in Open Design Alliance PRC SDK/U3D file parsing that can lead to remote code execution. The vulnerability affects Open Design Alliance PRC SDK before 2022.10 and the ODAViewer component handling U3D files. ZDI advisories describe remote code execution via...
CVE-2021-43277
CVE-2021-43277 is an out-of-bounds read in Open Design Alliance PRC SDK’s U3D file parsing. Crafted U3D data can trigger a read past the end of an allocated buffer, with the potential to execute arbitrary code in the context of the current process. This vulnerability is documented across multiple...
CVE-2021-43277
An out-of-bounds read vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute...