First published: Tue Dec 21 2021(Updated: )
An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data from a crafted TIF file leads to an out-of-bounds read. An attacker can leverage this vulnerability to execute code in the context of the current process.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opendesign Drawings Sdk | <2022.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2021-44860.
The severity of CVE-2021-44860 is high, with a severity value of 7.8.
The vulnerability occurs when reading a TIF file using Open Design Alliance Drawings SDK before version 2022.12.
The affected software is Opendesign Drawings SDK version up to 2022.12.
An attacker can exploit CVE-2021-44860 by leveraging the out-of-bounds read vulnerability in a crafted TIF file.