Vulnerabilities > Gerbv Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-24 | CVE-2023-4508 | Access of Uninitialized Pointer vulnerability in Gerbv Project Gerbv A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash and cause denial-of-service with a specially crafted Gerber RS-274X file. | 5.5 |
| 2022-04-14 | CVE-2021-40400 | Out-of-bounds Read vulnerability in Gerbv Project Gerbv 2.7.0 An out-of-bounds read vulnerability exists in the RS-274X aperture macro outline primitive functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit d7f42a9a). | 7.5 |
| 2022-04-14 | CVE-2021-40402 | Out-of-bounds Read vulnerability in Gerbv Project Gerbv 2.7.0/2.7.1/2.8.0 An out-of-bounds read vulnerability exists in the RS-274X aperture macro multiple outline primitives functionality of Gerbv 2.7.0 and dev (commit b5f1eacd), and Gerbv forked 2.7.1 and 2.8.0. | 7.5 |
| 2022-02-04 | CVE-2021-40401 | Unchecked Return Value vulnerability in multiple products A use-after-free vulnerability exists in the RS-274X aperture definition tokenization functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and Gerbv forked 2.7.1. | 8.6 |
| 2022-02-04 | CVE-2021-40403 | Missing Initialization of a Variable vulnerability in multiple products An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.7.0 and dev (commit b5f1eacd), and Gerbv forked 2.8.0. | 6.3 |
| 2021-12-22 | CVE-2021-40393 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit 71493260). | 9.8 |
| 2021-12-22 | CVE-2021-40394 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit 71493260). | 9.8 |
| 2021-11-19 | CVE-2021-40391 | Improper Handling of Exceptional Conditions vulnerability in multiple products An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev (commit b5f1eacd), and the forked version of Gerbv (commit 71493260). | 9.8 |