First published: Fri Oct 19 2018(Updated: )
Open Design Alliance Drawings SDK 2019Update1 has a vulnerability during the reading of malformed files, allowing attackers to obtain sensitive information from process memory or cause a crash.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opendesign Drawings Sdk | =2019-update1 | |
Oracle Outside In Technology | =8.5.3 | |
Oracle Outside In Technology | =8.5.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-18223 is a vulnerability in the Open Design Alliance Drawings SDK 2019Update1 that allows attackers to obtain sensitive information from process memory or cause a crash.
CVE-2018-18223 has a severity rating of 8.1, which is considered high.
CVE-2018-18223 affects Open Design Alliance Drawings SDK 2019Update1, Oracle Outside In Technology version 8.5.3, and Oracle Outside In Technology version 8.5.4.
An attacker can exploit CVE-2018-18223 by providing a malformed file, which can lead to obtaining sensitive information from process memory or causing a crash.
You can find more information about CVE-2018-18223 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/105603), [Open Design Alliance Security Advisories](https://www.opendesign.com/security-advisories), [Oracle Security Advisory](https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html).