Vulnerabilities > Blender
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-16 | CVE-2022-2832 | Use of NullPointerException Catch to Detect NULL Pointer Dereference vulnerability in Blender 3.3.0 A flaw was found in Blender 3.3.0. | 7.5 |
| 2022-02-24 | CVE-2022-0544 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an attacker to read sensitive data using a crafted DDS image file. | 5.5 |
| 2022-02-24 | CVE-2022-0545 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is loaded. | 7.8 |
| 2022-02-24 | CVE-2022-0546 | Integer Overflow or Wraparound vulnerability in multiple products A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution. | 7.8 |
| 2018-04-24 | CVE-2017-2918 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the Image loading functionality of the Blender open-source 3d creation suite v2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2908 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2907 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2906 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2905 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2904 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |