First published: Sun Jul 17 2022(Updated: )
An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opendesign Drawings Sdk | <2023.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-28808 is a vulnerability discovered in Open Design Alliance Drawings SDK before 2023.3 which allows for an Out-of-Bounds Read when reading DWG files in recovery mode.
CVE-2022-28808 has a severity rating of 7.8 out of 10, indicating a high severity.
The Open Design Alliance Drawings SDK before 2023.3 is affected by CVE-2022-28808.
An attacker can exploit CVE-2022-28808 by leveraging the vulnerability to execute code in the context of the current process.
It is recommended to update to Open Design Alliance Drawings SDK 2023.3 or later to mitigate the risk associated with CVE-2022-28808.