← voltar
CVE-2021-25178

CVE-2021-25178

EPSS 3.2%
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. This can allow attackers to cause a crash potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdfhttps://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdfhttps://www.opendesign.com/security-advisorieshttps://www.zerodayinitiative.com/advisories/ZDI-21-220/https://www.zerodayinitiative.com/advisories/ZDI-21-240/https://www.zerodayinitiative.com/advisories/ZDI-21-243/