Use After Free in Opendesign Drawings_software_development_kit
CVE-2021-43275
A Use After Free vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.8. The issue results from the lack of validating the existence of an object prior to performing operations on the obje…
Vulnerability class: Use-After-Free
EPSS: 0.009 (53.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Opendesign Drawings_software_development_kit
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2021-43275?
- CVE-2021-43275 is a high-severity vulnerability in Opendesign Drawings_software_development_kit, classified under Use After Free. CVSS score: 7.8/10. Published 2021-11-14.
- How severe is CVE-2021-43275?
- High severity. CVSS v3 base score is 7.8 out of 10.