Vulnerability in Opendesign Oda_viewer

CVE-2021-43272

An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11. ODA Viewer continues to process invalid or malicious DWF files instead of stopping upon an exception. An attacker…

EPSS: 0.035 (87.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2021-43272?
CVE-2021-43272 is a critical-severity vulnerability in Opendesign Oda_viewer, classified under Improper Handling of Exceptional Conditions. CVSS score: 9.8/10. Published 2021-11-14.
How severe is CVE-2021-43272?
Critical severity. CVSS v3 base score is 9.8 out of 10.