Vulnerabilities > Blender

DATE CVE VULNERABILITY TITLE RISK
2022-08-16 CVE-2022-2832 Use of NullPointerException Catch to Detect NULL Pointer Dereference vulnerability in Blender 3.3.0
A flaw was found in Blender 3.3.0.
network
low complexity
blender CWE-395
7.5
2022-02-24 CVE-2022-0544 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an attacker to read sensitive data using a crafted DDS image file.
local
low complexity
blender debian CWE-191
5.5
2022-02-24 CVE-2022-0545 Integer Overflow or Wraparound vulnerability in multiple products
An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is loaded.
local
low complexity
blender debian CWE-190
7.8
2022-02-24 CVE-2022-0546 Integer Overflow or Wraparound vulnerability in multiple products
A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution.
local
low complexity
blender fedoraproject debian CWE-190
7.8
2018-04-24 CVE-2017-2918 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the Image loading functionality of the Blender open-source 3d creation suite v2.78c.
6.8
2018-04-24 CVE-2017-2908 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source 3d creation suite version 2.78c.
6.8
2018-04-24 CVE-2017-2907 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c.
6.8
2018-04-24 CVE-2017-2906 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c.
6.8
2018-04-24 CVE-2017-2905 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c.
6.8
2018-04-24 CVE-2017-2904 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c.
6.8