Vulnerabilities > Opendesign > Drawings SDK > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-21 | CVE-2021-44422 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design Alliance Drawings SDK before 2022.12. | 6.8 |
| 2021-12-21 | CVE-2021-44859 | Out-of-bounds Read vulnerability in Opendesign Drawings SDK An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance Drawings SDK before 2022.12. | 6.8 |
| 2021-12-21 | CVE-2021-44860 | Out-of-bounds Read vulnerability in Opendesign Drawings SDK An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. | 6.8 |
| 2021-12-05 | CVE-2021-44044 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK 2019/2021.11/2021.12 An out-of-bounds write vulnerability exists when reading a JPG file using Open Design Alliance Drawings SDK before 2022.11. | 6.8 |
| 2021-12-05 | CVE-2021-44045 | Out-of-bounds Write vulnerability in Opendesign Drawings SDK 2019/2021.11/2021.12 An out-of-bounds write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK before 2022.11. | 6.8 |
| 2021-12-05 | CVE-2021-44047 | Use After Free vulnerability in Opendesign Drawings SDK 2019/2021.11/2021.12 A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance Drawings SDK before 2022.11. | 6.8 |
| 2021-11-22 | CVE-2021-43582 | Use After Free vulnerability in Opendesign Drawings SDK 2019/2021.11/2021.12 A Use-After-Free Remote Vulnerability exists when reading a DWG file using Open Design Alliance Drawings SDK before 2022.11. | 6.8 |
| 2021-11-14 | CVE-2021-43273 | Out-of-bounds Read vulnerability in Opendesign Drawings SDK 2019/2021.11/2021.12 An Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.11. | 4.3 |
| 2021-06-17 | CVE-2021-32944 | Use After Free vulnerability in multiple products A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. | 6.8 |
| 2021-06-17 | CVE-2021-32950 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read issue exists within the parsing of DXF files in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. | 5.8 |