Vulnerabilities > Opendesign > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-26 CVE-2023-5180 Out-of-bounds Write vulnerability in Opendesign Drawings SDK
An issue was discovered in Open Design Alliance Drawings SDK before 2024.12.
local
low complexity
opendesign CWE-787
7.8
7.8
2023-11-07 CVE-2023-5179 Out-of-bounds Read vulnerability in Opendesign Drawings SDK
An issue was discovered in Open Design Alliance Drawings SDK before 2024.10.
local
low complexity
opendesign CWE-125
7.8
7.8
2023-04-15 CVE-2023-22669 Out-of-bounds Write vulnerability in Opendesign Drawings SDK
Parsing of DWG files in Open Design Alliance Drawings SDK before 2023.6 lacks proper validation of the length of user-supplied XRecord data prior to copying it to a fixed-length heap-based buffer.
local
low complexity
opendesign CWE-787
7.8
7.8
2023-04-15 CVE-2023-22670 Out-of-bounds Write vulnerability in Opendesign Drawings SDK
A heap-based buffer overflow exists in the DXF file reading procedure in Open Design Alliance Drawings SDK before 2023.6.
local
low complexity
opendesign CWE-787
7.8
7.8
2022-07-17 CVE-2022-28809 Missing Authentication for Critical Function vulnerability in Opendesign Drawings SDK
An issue was discovered in Open Design Alliance Drawings SDK before 2023.3.
local
low complexity
opendesign CWE-306
7.8
7.8
2022-01-15 CVE-2022-23095 Out-of-bounds Write vulnerability in Opendesign Drawings Software Development KIT 2021.11/2021.12
Open Design Alliance Drawings SDK before 2022.12.1 mishandles the loading of JPG files.
local
low complexity
opendesign CWE-787
7.8
7.8
2021-11-14 CVE-2021-43272 Improper Handling of Exceptional Conditions vulnerability in Opendesign ODA Viewer
An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11.
network
low complexity
opendesign CWE-755
7.5
7.5
2021-11-14 CVE-2021-43336 Out-of-bounds Write vulnerability in multiple products
An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK before 2022.11.
local
low complexity
opendesign siemens CWE-787
7.8
7.8
2021-11-14 CVE-2021-43391 Out-of-bounds Read vulnerability in Opendesign Drawings Software Development KIT 2021.11/2021.12
An Out-of-Bounds Read vulnerability exists when reading a DXF file using Open Design Alliance Drawings SDK before 2022.11.
local
low complexity
opendesign CWE-125
7.8
7.8
2021-06-17 CVE-2021-32936 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data.
local
low complexity
opendesign siemens CWE-787
7.8
7.8