Vulnerabilities > Luxion

DATE CVE VULNERABILITY TITLE RISK
2024-06-06 CVE-2024-30374 Out-of-bounds Write vulnerability in Luxion Keyshot and Keyshot Viewer
Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-787
7.8
2024-06-06 CVE-2024-30375 Use After Free vulnerability in Luxion Keyshot and Keyshot Viewer
Luxion KeyShot Viewer KSP File Parsing Use-After-Free Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-416
7.8
2024-06-06 CVE-2024-5506 Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer
Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-787
7.8
2024-06-06 CVE-2024-5507 Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer
Luxion KeyShot Viewer KSP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-787
7.8
2024-06-06 CVE-2024-5508 Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer
Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-787
7.8
2024-06-06 CVE-2024-5509 Uncontrolled Search Path Element vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer
Luxion KeyShot BIP File Parsing Uncontrolled Search Path Element Remote Code Execution Vulnerability.
local
low complexity
luxion CWE-427
7.8
2021-05-27 CVE-2021-27490 Out-of-bounds Read vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.
local
low complexity
luxion datakit siemens CWE-125
7.8
2021-05-27 CVE-2021-27488 Out-of-bounds Write vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files.
local
low complexity
luxion datakit siemens CWE-787
7.8
2021-05-27 CVE-2021-27492 XXE vulnerability in multiple products
When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers.
local
low complexity
luxion datakit siemens CWE-611
5.5
2021-05-27 CVE-2021-27494 Stack-based Buffer Overflow vulnerability in multiple products
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files.
local
low complexity
luxion datakit siemens CWE-121
7.8