Vulnerabilities > Opendesign > Drawings SDK > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-26 | CVE-2023-5180 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK An issue was discovered in Open Design Alliance Drawings SDK before 2024.12. | 7.8 |
| 2023-11-07 | CVE-2023-5179 | Out-of-bounds Read vulnerability in Opendesign Drawings SDK An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. | 7.8 |
| 2023-04-15 | CVE-2023-22669 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK Parsing of DWG files in Open Design Alliance Drawings SDK before 2023.6 lacks proper validation of the length of user-supplied XRecord data prior to copying it to a fixed-length heap-based buffer. | 7.8 |
| 2023-04-15 | CVE-2023-22670 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK A heap-based buffer overflow exists in the DXF file reading procedure in Open Design Alliance Drawings SDK before 2023.6. | 7.8 |
| 2022-07-17 | CVE-2022-28809 | Missing Authentication for Critical Function vulnerability in Opendesign Drawings SDK An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. | 7.8 |
| 2021-06-17 | CVE-2021-32936 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. | 7.8 |
| 2021-06-17 | CVE-2021-32938 | Out-of-bounds Read vulnerability in multiple products Drawings SDK (All versions prior to 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. | 7.1 |
| 2021-06-17 | CVE-2021-32940 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read issue exists in the DWG file-recovering procedure in the Drawings SDK (All versions prior to 2022.5) resulting from the lack of proper validation of user-supplied data. | 7.1 |
| 2021-06-17 | CVE-2021-32948 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. | 7.8 |