Vulnerabilities > Blender > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-16 CVE-2022-2832 Use of NullPointerException Catch to Detect NULL Pointer Dereference vulnerability in Blender 3.3.0
A flaw was found in Blender 3.3.0.
network
low complexity
blender CWE-395
7.5
2022-02-24 CVE-2022-0545 Integer Overflow or Wraparound vulnerability in multiple products
An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is loaded.
local
low complexity
blender debian CWE-190
7.8
2022-02-24 CVE-2022-0546 Integer Overflow or Wraparound vulnerability in multiple products
A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution.
local
low complexity
blender fedoraproject debian CWE-190
7.8
2018-04-24 CVE-2017-12105 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12104 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12103 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts text rendered as a font into a curve.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12102 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12101 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the 'modifier_mdef_compact_influences' functionality of the Blender open-source 3d creation suite v2.78c.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12100 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the 'multires_load_old_dm' functionality of the Blender open-source 3d creation suite v2.78c.
local
low complexity
blender debian CWE-190
7.8
2018-04-24 CVE-2017-12099 Integer Overflow or Wraparound vulnerability in multiple products
An exploitable integer overflow exists in the upgrade of the legacy Mesh attribute 'tface' of the Blender open-source 3d creation suite v2.78c.
local
low complexity
blender debian CWE-190
7.8