Opendesign Drawings_sdk
27 CVEs affecting Opendesign Drawings_sdk. Latest disclosed: 2023-12-26. Critical: 0, High: 26.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-18224 | High | 8.1 | 2018-10-19 | A vulnerability exists in the file reading procedure in Open Design Alliance Drawings SDK 2019Update1 on non-Windows platforms in which attackers could perform… |
CVE-2018-18223 | High | 8.1 | 2018-10-19 | Open Design Alliance Drawings SDK 2019Update1 has a vulnerability during the reading of malformed files, allowing attackers to obtain sensitive information fro… |
CVE-2023-5180 | High | 7.8 | 2023-12-26 | An issue was discovered in Open Design Alliance Drawings SDK before 2024.12. A corrupted value of number of sectors used by the Fat structure in a crafted DGN… |
CVE-2023-5179 | High | 7.8 | 2023-11-07 | An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to a… |
CVE-2023-22670 | High | 7.8 | 2023-04-15 | A heap-based buffer overflow exists in the DXF file reading procedure in Open Design Alliance Drawings SDK before 2023.6. The specific flaw exists within the p… |
CVE-2023-22669 | High | 7.8 | 2023-04-15 | Parsing of DWG files in Open Design Alliance Drawings SDK before 2023.6 lacks proper validation of the length of user-supplied XRecord data prior to copying it… |
CVE-2023-26495 | High | 7.8 | 2023-04-10 | An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An att… |
CVE-2022-28809 | High | 7.8 | 2022-07-17 | An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid… |
CVE-2022-28808 | High | 7.8 | 2022-07-17 | An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mod… |
CVE-2022-28807 | High | 7.8 | 2022-07-17 | An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's op… |
CVE-2021-44860 | High | 7.8 | 2021-12-21 | An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after load… |
CVE-2021-44859 | High | 7.8 | 2021-12-21 | An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after load… |
CVE-2021-44422 | High | 7.8 | 2021-12-21 | An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design Alliance Drawings SDK before 2022.12. Crafted data in a BMP file ca… |
CVE-2021-44047 | High | 7.8 | 2021-12-05 | A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists with parsi… |
CVE-2021-44045 | High | 7.8 | 2021-12-05 | An out-of-bounds write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within th… |
CVE-2021-44044 | High | 7.8 | 2021-12-05 | An out-of-bounds write vulnerability exists when reading a JPG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists with pars… |
CVE-2021-43582 | High | 7.8 | 2021-11-22 | A Use-After-Free Remote Vulnerability exists when reading a DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within t… |
CVE-2021-32952 | High | 7.8 | 2021-06-17 | An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validati… |
CVE-2021-32948 | High | 7.8 | 2021-06-17 | An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper vali… |
CVE-2021-32944 | High | 7.8 | 2021-06-17 | A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation… |