Vulnerabilities > Gerbv Project > Gerbv > 2.7.0

DATE CVE VULNERABILITY TITLE RISK
2023-08-24 CVE-2023-4508 Access of Uninitialized Pointer vulnerability in Gerbv Project Gerbv
A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash and cause denial-of-service with a specially crafted Gerber RS-274X file.
local
low complexity
gerbv-project CWE-824
5.5
5.5
2022-04-14 CVE-2021-40400 Out-of-bounds Read vulnerability in Gerbv Project Gerbv 2.7.0
An out-of-bounds read vulnerability exists in the RS-274X aperture macro outline primitive functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit d7f42a9a).
network
low complexity
gerbv-project CWE-125
5.0
5.0
2022-04-14 CVE-2021-40402 Out-of-bounds Read vulnerability in Gerbv Project Gerbv 2.7.0/2.7.1/2.8.0
An out-of-bounds read vulnerability exists in the RS-274X aperture macro multiple outline primitives functionality of Gerbv 2.7.0 and dev (commit b5f1eacd), and Gerbv forked 2.7.1 and 2.8.0.
network
low complexity
gerbv-project CWE-125
5.0
5.0
2022-02-04 CVE-2021-40401 Unchecked Return Value vulnerability in multiple products
A use-after-free vulnerability exists in the RS-274X aperture definition tokenization functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and Gerbv forked 2.7.1.
local
low complexity
gerbv-project fedoraproject debian CWE-252
8.6
8.6
2022-02-04 CVE-2021-40403 Missing Initialization of a Variable vulnerability in multiple products
An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.7.0 and dev (commit b5f1eacd), and Gerbv forked 2.8.0.
local
low complexity
gerbv-project fedoraproject debian CWE-456
6.3
6.3
2021-12-22 CVE-2021-40393 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit 71493260).
network
low complexity
gerbv-project debian CWE-787
critical
 9.8
9.8
2021-12-22 CVE-2021-40394 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit 71493260).
network
low complexity
gerbv-project debian CWE-787
critical
 9.8
9.8
2021-11-19 CVE-2021-40391 Improper Handling of Exceptional Conditions vulnerability in multiple products
An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev (commit b5f1eacd), and the forked version of Gerbv (commit 71493260).
network
low complexity
gerbv-project debian fedoraproject CWE-755
critical
 9.8
9.8