Crosscadware

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-20	CVE-2023-22295	Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1 Datakit CrossCadWare_x64.dll contains an out of bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file. local low complexity datakit CWE-125	5.5
2023-04-20	CVE-2023-22321	Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1 Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file. local low complexity datakit CWE-125	5.5
2023-04-20	CVE-2023-22354	Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1 Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file. local low complexity datakit CWE-125	5.5
2023-04-20	CVE-2023-22846	Out-of-bounds Read vulnerability in Datakit Crosscadware 2021.1 Datakit CrossCadWare_x64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file. local low complexity datakit CWE-125	5.5
2023-04-20	CVE-2023-23579	Out-of-bounds Write vulnerability in Datakit Crosscadware 2021.1 Datakit CrossCadWare_x64.dll contains an out-of-bounds write past the end of an allocated buffer while parsing a specially crafted SLDPRT file. local low complexity datakit CWE-787	7.8
2021-05-27	CVE-2021-27490	Out-of-bounds Read vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code. network datakit luxion siemens CWE-125	6.8
2021-05-27	CVE-2021-27488	Out-of-bounds Write vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files. network datakit luxion siemens CWE-787	6.8
2021-05-27	CVE-2021-27492	XXE vulnerability in multiple products When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers. network datakit luxion siemens CWE-611	4.3
2021-05-27	CVE-2021-27494	Stack-based Buffer Overflow vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files. network datakit luxion siemens CWE-121	6.8
2021-05-27	CVE-2021-27496	Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing PRT files. network datakit luxion siemens	6.8