Vulnerabilities > CVE-2023-0973 - Unspecified vulnerability in Steptools Ifcmesh Library

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

steptools

NVD

Published: 2023-03-13

Updated: 2024-11-21

Summary

STEPTools v18SP1 ifcmesh library (v18.1) is affected due to a null pointer dereference, which could allow an attacker to deny application usage when reading a specially constructed file, resulting in an application crash.

Vulnerable Configurations

Part	Description	Count
Application	Steptools Steptools Ifcmesh Library *	1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-04
https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-04