First published: Sun Dec 05 2021(Updated: )
An out-of-bounds write vulnerability exists when reading a TIF file using Open Design Alliance (ODA) Drawings Explorer before 2022.11. The specific issue exists after loading TIF files. Crafted data in a TIF file can trigger a write operation past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opendesign Drawings Explorer | <2022.11 | |
<2022.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this out-of-bounds write vulnerability is CVE-2021-44048.
The affected software in this vulnerability is Open Design Alliance (ODA) Drawings Explorer before version 2022.11.
The severity rating of CVE-2021-44048 is 7.8 (high).
This vulnerability occurs when reading a TIF file using Open Design Alliance (ODA) Drawings Explorer before version 2022.11.
An attacker can exploit this vulnerability by crafting malicious data in a TIF file that triggers a write operation beyond the allocated buffer.