Latest opendesign drawings sdk Vulnerabilities

CVE-2023-5180
Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12
Opendesign Drawings Sdk<2024.12
CVE-2023-5179
An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow atta...
Opendesign Drawings Sdk<2024.10
CVE-2023-22670
Opendesign Drawings Sdk<2023.6
CVE-2023-22669
Parsing of DWG files in Open Design Alliance Drawings SDK before 2023.6 lacks proper validation of the length of user-supplied XRecord data prior to copying it to a fixed-length heap-based buffer. An ...
Opendesign Drawings Sdk<2023.6
CVE-2023-26495
An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction wi...
Opendesign Drawings Sdk<2024.1
CVE-2022-28809
An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid vertex number in a recovery mode. An atta...
Opendesign Drawings Sdk<2023.3
CVE-2022-28807
An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker ca...
Opendesign Drawings Sdk<2023.2
CVE-2022-28808
An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerab...
Opendesign Drawings Sdk<2023.3
CVE-2021-44859
An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TGA files. An unchecked input data fr...
Opendesign Drawings Sdk<2022.12
CVE-2021-44860
An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data fr...
Opendesign Drawings Sdk<2022.12
CVE-2021-44422
Opendesign Drawings Sdk<2022.12
CVE-2021-44045
An out-of-bounds write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DGN files. Crafted data in a...
Opendesign Drawings Sdk<2022.11
CVE-2021-44044
An out-of-bounds write vulnerability exists when reading a JPG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists with parsing JPG files. Crafted data in a JPG (4 e...
Opendesign Drawings Sdk<2022.11
CVE-2021-43582
Open Design Alliance (ODA) Drawings Explorer DWG File Parsing Use-After-Free Remote Code Execution Vulnerability
Opendesign Drawings Sdk<2022.11
Open Design Alliance (ODA) Drawings Explorer
CVE-2021-43273
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Open Design Alliance (ODA) Drawings Explorer
Opendesign Drawings Sdk<2022.11
Open Design Alliance (ODA) ODAViewer
CVE-2021-32944
Siemens JT2Go DGN File Parsing Use-After-Free Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32950
Siemens JT2Go DXF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32952
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<=2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.2
Siemens Teamcenter Visualization<13.2.0.2
CVE-2021-32940
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.5
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32938
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32936
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32946
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<=2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.2
Siemens Teamcenter Visualization<13.2.0.2
CVE-2021-31784
An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow a...
Opendesign Drawings Sdk<2021.6
Siemens COMOS<10.4.1
CVE-2018-18224
A vulnerability exists in the file reading procedure in Open Design Alliance Drawings SDK 2019Update1 on non-Windows platforms in which attackers could perform read operations past the end, or before ...
Opendesign Drawings Sdk=2019-update1
Oracle Outside In Technology=8.5.3
Oracle Outside In Technology=8.5.4
CVE-2018-18223
Open Design Alliance Drawings SDK 2019Update1 has a vulnerability during the reading of malformed files, allowing attackers to obtain sensitive information from process memory or cause a crash.
Opendesign Drawings Sdk=2019-update1
Oracle Outside In Technology=8.5.3
Oracle Outside In Technology=8.5.4

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203