Vulnerabilities > Datakit

DATE CVE VULNERABILITY TITLE RISK
2023-04-20 CVE-2023-22295 Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1
Datakit CrossCadWare_x64.dll contains an out of bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file.
local
low complexity
datakit CWE-125
5.5
2023-04-20 CVE-2023-22321 Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1
Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file.
local
low complexity
datakit CWE-125
5.5
2023-04-20 CVE-2023-22354 Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1
Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file.
local
low complexity
datakit CWE-125
5.5
2023-04-20 CVE-2023-22846 Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1
Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file.
local
low complexity
datakit CWE-125
5.5
2023-04-20 CVE-2023-23579 Out-of-bounds Write vulnerability in Datakit Crosscadware 2021.1
Datakit CrossCadWare_x64.dll contains an out-of-bounds write past the end of an allocated buffer while parsing a specially crafted SLDPRT file.
local
low complexity
datakit CWE-787
7.8
2021-05-27 CVE-2021-27490 Out-of-bounds Read vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.
6.8
2021-05-27 CVE-2021-27488 Out-of-bounds Write vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files.
6.8
2021-05-27 CVE-2021-27492 XXE vulnerability in multiple products
When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers.
4.3
2021-05-27 CVE-2021-27494 Stack-based Buffer Overflow vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files.
6.8
2021-05-27 CVE-2021-27496 Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing PRT files. 6.8