Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-f5cj-2ghc-vgwm

Опубликовано: 10 апр. 2023
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.

Ссылки

EPSS

Процентиль: 25%
0.00088
Низкий

7.8 High

CVSS3

CVE ID

CVE-2023-26495

Дефекты

CWE-416

Связанные уязвимости

nvd логотип

CVE-2023-26495

CVSS3: 7.8
nvd
почти 3 года назад

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.

EPSS

Процентиль: 25%
0.00088
Низкий

7.8 High

CVSS3

CVE ID

CVE-2023-26495

Дефекты

CWE-416