Vulnerability in Opendesign Oda_viewer
CVE-2021-43272
An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11. ODA Viewer continues to process invalid or malicious DWF files instead of stopping upon an exception. An attacker…
EPSS: 0.035 (87.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Opendesign Oda_viewer
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_MISC, Vendor Advisory)
- cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
- cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
- cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-43272?
- CVE-2021-43272 is a critical-severity vulnerability in Opendesign Oda_viewer, classified under Improper Handling of Exceptional Conditions. CVSS score: 9.8/10. Published 2021-11-14.
- How severe is CVE-2021-43272?
- Critical severity. CVSS v3 base score is 9.8 out of 10.