Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    26 vulnerabilities by Open Design Alliance

    CVE-2025-10021 (GCVE-0-2025-10021)

    Vulnerability from nvd – Published: 2025-12-22 15:48 – Updated: 2025-12-22 16:07
    VLAI
    Summary
    A Use of Uninitialized Variable vulnerability exists in Open Design Alliance Drawings SDK static versions (mt) before 2026.12. Static object `COdaMfcAppApp theApp` may access `OdString::kEmpty` before its initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,  memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-457 - Use of Uninitialized Variable
    Assigner
    ODA
    References
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-10021",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-22T16:07:39.802296Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-22T16:07:59.129Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux",
                "MacOS"
              ],
              "product": "ODA Drawings SDK - All Versions \u003c 2026.12",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2026.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA Use of Uninitialized Variable vulnerability exists in Open Design\u0026nbsp;Alliance Drawings SDK static versions (mt) before 2026.12. Static object\u0026nbsp;`COdaMfcAppApp theApp` may access `OdString::kEmpty` before its\u0026nbsp;initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,\u0026nbsp; memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios.\u003c/p\u003e"
                }
              ],
              "value": "A Use of Uninitialized Variable vulnerability exists in Open Design\u00a0Alliance Drawings SDK static versions (mt) before 2026.12. Static object\u00a0`COdaMfcAppApp theApp` may access `OdString::kEmpty` before its\u00a0initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,\u00a0 memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-100",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-100 Overflow Buffers"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "AMBER",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "DIFFUSE",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/AU:Y/R:U/V:D/RE:L/U:Amber",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "LOW"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-457",
                  "description": "CWE-457: Use of Uninitialized Variable",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-22T15:48:07.288Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2025-10021",
        "datePublished": "2025-12-22T15:48:07.288Z",
        "dateReserved": "2025-09-05T10:51:56.557Z",
        "dateUpdated": "2025-12-22T16:07:59.129Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-12564 (GCVE-0-2024-12564)

    Vulnerability from nvd – Published: 2024-12-12 07:41 – Updated: 2025-09-11 14:06
    VLAI
    Title
    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3
    Summary
    Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
    • CWE-276 - Incorrect Default Permissions
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    ODA
    References
    Impacted products
    Vendor Product Version
    Open Design Alliance CDE inWEB SDK Affected: 0 , < 2025.3 (custom)
    Create a notification for this product.
    Credits
    dhiyaneshDK philippedelteil
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-12564",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-11T14:06:14.895419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-11T14:06:26.560Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux"
              ],
              "product": "CDE inWEB SDK",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2025.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "dhiyaneshDK"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "philippedelteil"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eExposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation.\u003c/p\u003e"
                }
              ],
              "value": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-116",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-116 Excavation"
                }
              ]
            },
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-276",
                  "description": "CWE-276 Incorrect Default Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-09-08T06:32:05.943Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2024-12564",
        "datePublished": "2024-12-12T07:41:52.862Z",
        "dateReserved": "2024-12-12T07:06:22.211Z",
        "dateUpdated": "2025-09-11T14:06:26.560Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8894 (GCVE-0-2024-8894)

    Vulnerability from nvd – Published: 2024-12-04 11:40 – Updated: 2024-12-04 21:02
    VLAI
    Title
    Out-of-bounds Write vulnerability in ODA SDK versions < 2025.10
    Summary
    Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    ODA
    References
    Impacted products
    Date Public
    2024-12-04 07:07
    Credits
    Vladislav Berghici
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8894",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T19:18:33.695260Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:02:00.422Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux",
                "MacOS",
                "iOS",
                "Android"
              ],
              "product": "ODA Drawings SDK - All Versions \u003c 2025.10",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2025.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Vladislav Berghici"
            }
          ],
          "datePublic": "2024-12-04T07:07:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Out-of-bounds Write\u0026nbsp;vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \u003cbr\u003e\u003cbr\u003e"
                }
              ],
              "value": "Out-of-bounds Write\u00a0vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-123",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-123 Buffer Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:H/SC:N/SI:N/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-12-04T11:40:22.411Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Out-of-bounds Write vulnerability in ODA SDK versions \u003c 2025.10",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2024-8894",
        "datePublished": "2024-12-04T11:40:22.411Z",
        "dateReserved": "2024-09-16T14:09:36.103Z",
        "dateUpdated": "2024-12-04T21:02:00.422Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5180 (GCVE-0-2023-5180)

    Vulnerability from nvd – Published: 2023-12-26 08:35 – Updated: 2024-08-02 07:52
    VLAI
    Title
    Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12
    Summary
    An issue was discovered in Open Design Alliance Drawings SDK before 2024.12. A corrupted value of number of sectors used by the Fat structure in a crafted DGN file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the context of the current process.
    CWE
    Assigner
    ODA
    References
    Impacted products
    Credits
    Seyit Sığırcı
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:52:07.647Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.opendesign.com/security-advisories"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ODA Drawings SDK - All Versions \u003c 2024.12",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2024.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Seyit S\u0131\u011f\u0131rc\u0131"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An issue was discovered in Open Design Alliance\nDrawings SDK before 2024.12. A corrupted value of number\nof sectors used by the Fat structure in a crafted DGN file leads to an\nout-of-bounds write. An attacker can leverage this vulnerability to execute\ncode in the context of the current process."
                }
              ],
              "value": "An issue was discovered in Open Design Alliance\nDrawings SDK before 2024.12. A corrupted value of number\nof sectors used by the Fat structure in a crafted DGN file leads to an\nout-of-bounds write. An attacker can leverage this vulnerability to execute\ncode in the context of the current process."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-123",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-123 Buffer Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "To exploit vulnerability, malicious DGN file should be read by ODA Drawings SDK."
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-26T08:35:40.093Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2023-5180",
        "datePublished": "2023-12-26T08:35:37.619Z",
        "dateReserved": "2023-09-25T17:08:17.255Z",
        "dateUpdated": "2024-08-02T07:52:07.647Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5179 (GCVE-0-2023-5179)

    Vulnerability from nvd – Published: 2023-11-07 15:16 – Updated: 2024-09-04 19:43
    VLAI
    Summary
    An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    ODA
    References
    Impacted products
    Credits
    Seyit Sığırcı
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:52:08.516Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.opendesign.com/security-advisories"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5179",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-04T19:41:13.254763Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-04T19:43:42.670Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ODA Drawings SDK - All Versions \u003c 2024.10",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2024.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Seyit S\u0131\u011f\u0131rc\u0131"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \u003c/p\u003e\n\n\n"
                }
              ],
              "value": "An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \n\n\n\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-540",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-540 Overread Buffers"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125 Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-11-07T15:16:29.985Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2023-5179",
        "datePublished": "2023-11-07T15:16:22.607Z",
        "dateReserved": "2023-09-25T17:08:14.420Z",
        "dateUpdated": "2024-09-04T19:43:42.670Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-10021 (GCVE-0-2025-10021)

    Vulnerability from cvelistv5 – Published: 2025-12-22 15:48 – Updated: 2025-12-22 16:07
    VLAI
    Summary
    A Use of Uninitialized Variable vulnerability exists in Open Design Alliance Drawings SDK static versions (mt) before 2026.12. Static object `COdaMfcAppApp theApp` may access `OdString::kEmpty` before its initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,  memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-457 - Use of Uninitialized Variable
    Assigner
    ODA
    References
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-10021",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-22T16:07:39.802296Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-22T16:07:59.129Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux",
                "MacOS"
              ],
              "product": "ODA Drawings SDK - All Versions \u003c 2026.12",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2026.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA Use of Uninitialized Variable vulnerability exists in Open Design\u0026nbsp;Alliance Drawings SDK static versions (mt) before 2026.12. Static object\u0026nbsp;`COdaMfcAppApp theApp` may access `OdString::kEmpty` before its\u0026nbsp;initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,\u0026nbsp; memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios.\u003c/p\u003e"
                }
              ],
              "value": "A Use of Uninitialized Variable vulnerability exists in Open Design\u00a0Alliance Drawings SDK static versions (mt) before 2026.12. Static object\u00a0`COdaMfcAppApp theApp` may access `OdString::kEmpty` before its\u00a0initialization. Due to undefined initialization order of static objects across translation units (Static Initialization Order Fiasco), the application accesses uninitialized memory. This results in application crash on startup, causing denial of service. Due to undefined behavior,\u00a0 memory corruption and potential arbitrary code execution cannot be ruled out in specific exploitation scenarios."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-100",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-100 Overflow Buffers"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "AMBER",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "DIFFUSE",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/AU:Y/R:U/V:D/RE:L/U:Amber",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "LOW"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-457",
                  "description": "CWE-457: Use of Uninitialized Variable",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-22T15:48:07.288Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2025-10021",
        "datePublished": "2025-12-22T15:48:07.288Z",
        "dateReserved": "2025-09-05T10:51:56.557Z",
        "dateUpdated": "2025-12-22T16:07:59.129Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-12564 (GCVE-0-2024-12564)

    Vulnerability from cvelistv5 – Published: 2024-12-12 07:41 – Updated: 2025-09-11 14:06
    VLAI
    Title
    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3
    Summary
    Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
    • CWE-276 - Incorrect Default Permissions
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    ODA
    References
    Impacted products
    Vendor Product Version
    Open Design Alliance CDE inWEB SDK Affected: 0 , < 2025.3 (custom)
    Create a notification for this product.
    Credits
    dhiyaneshDK philippedelteil
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-12564",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-09-11T14:06:14.895419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-11T14:06:26.560Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux"
              ],
              "product": "CDE inWEB SDK",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2025.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "dhiyaneshDK"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "philippedelteil"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eExposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation.\u003c/p\u003e"
                }
              ],
              "value": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things about the target application which may help in further investigation and exploitation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-116",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-116 Excavation"
                }
              ]
            },
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-276",
                  "description": "CWE-276 Incorrect Default Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-09-08T06:32:05.943Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2024-12564",
        "datePublished": "2024-12-12T07:41:52.862Z",
        "dateReserved": "2024-12-12T07:06:22.211Z",
        "dateUpdated": "2025-09-11T14:06:26.560Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8894 (GCVE-0-2024-8894)

    Vulnerability from cvelistv5 – Published: 2024-12-04 11:40 – Updated: 2024-12-04 21:02
    VLAI
    Title
    Out-of-bounds Write vulnerability in ODA SDK versions < 2025.10
    Summary
    Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    ODA
    References
    Impacted products
    Date Public
    2024-12-04 07:07
    Credits
    Vladislav Berghici
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8894",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T19:18:33.695260Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:02:00.422Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "Linux",
                "MacOS",
                "iOS",
                "Android"
              ],
              "product": "ODA Drawings SDK - All Versions \u003c 2025.10",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2025.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Vladislav Berghici"
            }
          ],
          "datePublic": "2024-12-04T07:07:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Out-of-bounds Write\u0026nbsp;vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \u003cbr\u003e\u003cbr\u003e"
                }
              ],
              "value": "Out-of-bounds Write\u00a0vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-123",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-123 Buffer Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:H/SC:N/SI:N/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-12-04T11:40:22.411Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Out-of-bounds Write vulnerability in ODA SDK versions \u003c 2025.10",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2024-8894",
        "datePublished": "2024-12-04T11:40:22.411Z",
        "dateReserved": "2024-09-16T14:09:36.103Z",
        "dateUpdated": "2024-12-04T21:02:00.422Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5180 (GCVE-0-2023-5180)

    Vulnerability from cvelistv5 – Published: 2023-12-26 08:35 – Updated: 2024-08-02 07:52
    VLAI
    Title
    Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12
    Summary
    An issue was discovered in Open Design Alliance Drawings SDK before 2024.12. A corrupted value of number of sectors used by the Fat structure in a crafted DGN file leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the context of the current process.
    CWE
    Assigner
    ODA
    References
    Impacted products
    Credits
    Seyit Sığırcı
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:52:07.647Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.opendesign.com/security-advisories"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ODA Drawings SDK - All Versions \u003c 2024.12",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2024.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Seyit S\u0131\u011f\u0131rc\u0131"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An issue was discovered in Open Design Alliance\nDrawings SDK before 2024.12. A corrupted value of number\nof sectors used by the Fat structure in a crafted DGN file leads to an\nout-of-bounds write. An attacker can leverage this vulnerability to execute\ncode in the context of the current process."
                }
              ],
              "value": "An issue was discovered in Open Design Alliance\nDrawings SDK before 2024.12. A corrupted value of number\nof sectors used by the Fat structure in a crafted DGN file leads to an\nout-of-bounds write. An attacker can leverage this vulnerability to execute\ncode in the context of the current process."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-123",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-123 Buffer Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "To exploit vulnerability, malicious DGN file should be read by ODA Drawings SDK."
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-26T08:35:40.093Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2023-5180",
        "datePublished": "2023-12-26T08:35:37.619Z",
        "dateReserved": "2023-09-25T17:08:17.255Z",
        "dateUpdated": "2024-08-02T07:52:07.647Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5179 (GCVE-0-2023-5179)

    Vulnerability from cvelistv5 – Published: 2023-11-07 15:16 – Updated: 2024-09-04 19:43
    VLAI
    Summary
    An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    ODA
    References
    Impacted products
    Credits
    Seyit Sığırcı
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:52:08.516Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.opendesign.com/security-advisories"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5179",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-04T19:41:13.254763Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-04T19:43:42.670Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ODA Drawings SDK - All Versions \u003c 2024.10",
              "vendor": "Open Design Alliance",
              "versions": [
                {
                  "lessThan": "2024.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "user": "00000000-0000-4000-9000-000000000000",
              "value": "Seyit S\u0131\u011f\u0131rc\u0131"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \u003c/p\u003e\n\n\n"
                }
              ],
              "value": "An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution. \n\n\n\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-540",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-540 Overread Buffers"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125 Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-11-07T15:16:29.985Z",
            "orgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
            "shortName": "ODA"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.opendesign.com/security-advisories"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8a9629cb-c5e7-4d2a-a894-111e8039b7ea",
        "assignerShortName": "ODA",
        "cveId": "CVE-2023-5179",
        "datePublished": "2023-11-07T15:16:22.607Z",
        "dateReserved": "2023-09-25T17:08:14.420Z",
        "dateUpdated": "2024-09-04T19:43:42.670Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    VAR-202101-1898

    Vulnerability from variot - Updated: 2024-02-06 20:36

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). Open Design Alliance Drawings SDK Exists in a vulnerability related to illegal type conversion.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1898",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "jt2go",
            "scope": null,
            "trust": 4.2,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.11"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.11",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Michael DePlante (@izobashi) of Trend Micro\u0027s Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          }
        ],
        "trust": 2.8
      },
      "cve": "CVE-2021-25175",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25175",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383904",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25175",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 4.2,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25175",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-25175",
                "trust": 4.2,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-25175",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1317",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383904",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-25175",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). Open Design Alliance Drawings SDK Exists in a vulnerability related to illegal type conversion.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          }
        ],
        "trust": 5.58
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25175",
            "trust": 6.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-246",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218",
            "trust": 3.3
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11911",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11910",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11914",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11988",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11993",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11912",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "id": "VAR-202101-1898",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2024-02-06T20:36:34.656000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 4.2,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Fixes for code issue vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139576"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=1c3bdb36e22f42f5b9339f0ff806382c"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-704",
            "trust": 1.1
          },
          {
            "problemtype": "Illegal type conversion or cast (CWE-704) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 4.8,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 2.7,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-223/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-218/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-224/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-244/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-245/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-246/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25175"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/704.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "date": "2021-09-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "date": "2021-01-18T08:15:13.180000",
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-244"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-224"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-223"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-218"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383904"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25175"
          },
          {
            "date": "2021-09-29T08:26:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002746"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          },
          {
            "date": "2022-04-08T13:20:54.863000",
            "db": "NVD",
            "id": "CVE-2021-25175"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-246"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-245"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-244"
          }
        ],
        "trust": 2.1
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "code problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1317"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1195

    Vulnerability from variot - Updated: 2023-12-18 11:50

    An out-of-bounds read issue exists within the parsing of DXF files in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of-service condition or read sensitive information from memory locations. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. There is a buffer error vulnerability in Drawings SDK, which is caused by boundary conditions when parsing DXF files. Affected products and versions are as follows: Drawings SDK: Before 2022.4

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1195",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 0.7,
            "vendor": "open design alliance oda",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ],
        "trust": 1.3
      },
      "cve": "CVE-2021-32950",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392936",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32950",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "NONE",
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32950",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.2,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "Low",
                "baseScore": 4.4,
                "baseSeverity": "Medium",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L \t",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32950",
                "trust": 1.4,
                "value": "LOW"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32950",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-685",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392936",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32950",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds read issue exists within the parsing of DXF files in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of-service condition or read sensitive information from memory locations. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. There is a buffer error vulnerability in Drawings SDK, which is caused by boundary conditions when parsing DXF files. Affected products and versions are as follows: Drawings SDK: Before 2022.4",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          }
        ],
        "trust": 3.6
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32950",
            "trust": 4.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-988",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13415",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19163",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "id": "VAR-202106-1195",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:50:04.068000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=154862"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-125",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-988/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.2,
            "url": "https://cwe.mitre.org/data/definitions/125.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-23-136/"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:08.250000",
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-988"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-136"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392936"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32950"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2022-04-15T15:34:59.663000",
            "db": "NVD",
            "id": "CVE-2021-32950"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-685"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1190

    Vulnerability from variot - Updated: 2023-12-18 11:46

    An out-of-bounds read issue exists in the DWG file-recovering procedure in the Drawings SDK (All versions prior to 2022.5) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or read sensitive information from memory locations. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. A buffer error vulnerability exists in the Drawings SDK, which originates from a boundary condition in the recovery process of DWG files. Affected products and versions are as follows: Drawings SDK: Before 2022.4

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1190",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 1.4,
            "vendor": "open design alliance oda",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.5"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.5",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell \u0026 Jimmy Calderon (@vectors2final) of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          }
        ],
        "trust": 1.4
      },
      "cve": "CVE-2021-32940",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392926",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32940",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "NONE",
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32940",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.2,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "Low",
                "baseScore": 4.4,
                "baseSeverity": "Medium",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32940",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32940",
                "trust": 1.4,
                "value": "LOW"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32940",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-32940",
                "trust": 0.7,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-681",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392926",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32940",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds read issue exists in the DWG file-recovering procedure in the Drawings SDK (All versions prior to 2022.5) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or read sensitive information from memory locations. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. A buffer error vulnerability exists in the Drawings SDK, which originates from a boundary condition in the recovery process of DWG files. Affected products and versions are as follows: Drawings SDK: Before 2022.4",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          }
        ],
        "trust": 4.23
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32940",
            "trust": 5.5
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-986",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13412",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19154",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19134",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "id": "VAR-202106-1190",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:46:16.752000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "",
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=154859"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-125",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-986/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/125.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-23-120/"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:07.923000",
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-986"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-134"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-120"
          },
          {
            "date": "2023-01-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392926"
          },
          {
            "date": "2023-03-28T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32940"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2023-03-28T17:12:49.597000",
            "db": "NVD",
            "id": "CVE-2021-32940"
          },
          {
            "date": "2023-01-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-681"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1900

    Vulnerability from variot - Updated: 2023-12-18 11:28

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Confusion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1900",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.11"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.11",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Michael DePlante (@izobashi) of Trend Micro\u0027s Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2021-25177",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25177",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383906",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25177",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25177",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-25177",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25177",
                "trust": 0.7,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1315",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383906",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Confusion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          }
        ],
        "trust": 2.34
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25177",
            "trust": 3.2
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-219",
            "trust": 3.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11927",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "id": "VAR-202101-1900",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:28:09.890000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Open Design Alliance Drawings SDK Fixes for code issue vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139574"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-843",
            "trust": 1.1
          },
          {
            "problemtype": "Wrong type (CWE-843) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-219/"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25177"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 1.3,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "date": "2021-09-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "date": "2021-01-18T08:15:13.273000",
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-219"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383906"
          },
          {
            "date": "2021-09-29T08:27:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          },
          {
            "date": "2022-04-08T13:19:27.313000",
            "db": "NVD",
            "id": "CVE-2021-25177"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0Drawings\u00a0SDK\u00a0 Vulnerability regarding mistyping in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002748"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "code problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1315"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1194

    Vulnerability from variot - Updated: 2023-12-18 11:27

    An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1194",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 1.4,
            "vendor": "open design alliance oda",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "solid edge viewer",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ],
        "trust": 2.0
      },
      "cve": "CVE-2021-32948",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392934",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32948",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32948",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 2.8,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32948",
                "trust": 2.8,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32948",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-684",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392934",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32948",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          }
        ],
        "trust": 4.86
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32948",
            "trust": 6.2
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-984",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-491245",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13410",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19145",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19135",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19074",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0960",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "id": "VAR-202106-1194",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:27:21.063000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "",
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=154861"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.5,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-984/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0960"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://cert-portal.siemens.com/productcert/txt/ssa-155599.txt"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:08.167000",
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-984"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-128"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-121"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-208"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392934"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32948"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2023-02-14T12:15:11.183000",
            "db": "NVD",
            "id": "CVE-2021-32948"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2023-02-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-684"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1193

    Vulnerability from variot - Updated: 2023-12-18 11:26

    An improper check for unusual or exceptional conditions issue exists within the parsing DGN files from Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of the user-supplied data. This may result in several of out-of-bounds problems and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. Affected products and versions are as follows: Drawings SDK: Before 2022.4

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1193",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "jt2go",
            "scope": null,
            "trust": 1.4,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.2"
          },
          {
            "model": "drawings sdk",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.2"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 0.7,
            "vendor": "open design alliance oda",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.2",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.2",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ],
        "trust": 2.0
      },
      "cve": "CVE-2021-32946",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392932",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32946",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32946",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 2.1,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32946",
                "trust": 2.1,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32946",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-687",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392932",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32946",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An improper check for unusual or exceptional conditions issue exists within the parsing DGN files from Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of the user-supplied data. This may result in several of out-of-bounds problems and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. Affected products and versions are as follows: Drawings SDK: Before 2022.4",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          }
        ],
        "trust": 4.23
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32946",
            "trust": 5.5
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-985",
            "trust": 2.5
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-938030",
            "trust": 1.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13411",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13409",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19148",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060908",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081107",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2702",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-03",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "id": "VAR-202106-1193",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:26:02.701000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "",
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Fixes for code issue vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=154864"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=e0bde73e6fac136c31fc4dfabb276eae"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-754",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-985/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-983/"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081107"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2702"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060908"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.2,
            "url": "https://cwe.mitre.org/data/definitions/754.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://cert-portal.siemens.com/productcert/txt/ssa-938030.txt"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-23-130/"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T12:15:08.023000",
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-985"
          },
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-983"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-130"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392932"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32946"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2022-04-15T15:39:18.653000",
            "db": "NVD",
            "id": "CVE-2021-32946"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-687"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1896

    Vulnerability from variot - Updated: 2023-12-18 11:21

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1896",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.12"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.12",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "rgod",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2021-25173",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25173",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383902",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25173",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25173",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-25173",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25173",
                "trust": 0.7,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1319",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383902",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          }
        ],
        "trust": 2.34
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25173",
            "trust": 3.2
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-225",
            "trust": 2.4
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.7
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU91083521",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-12019",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "id": "VAR-202101-1896",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:21:28.251000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Open Design Alliance Drawings SDK Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139577"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-770",
            "trust": 1.1
          },
          {
            "problemtype": "Allocation of resources without limits or throttling (CWE-770) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.7,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-225/"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25173"
          },
          {
            "trust": 1.3,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu91083521/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "date": "2021-10-06T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "date": "2021-01-18T08:15:13.023000",
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-225"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383902"
          },
          {
            "date": "2021-10-06T05:19:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          },
          {
            "date": "2022-04-08T13:22:57.690000",
            "db": "NVD",
            "id": "CVE-2021-25173"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0Drawings\u00a0SDK\u00a0 Vulnerability in resource allocation without restrictions or throttling in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002840"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1319"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1901

    Vulnerability from variot - Updated: 2023-12-18 11:21

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. This can allow attackers to cause a crash potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF and DWG files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1901",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "jt2go",
            "scope": null,
            "trust": 2.1,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.11"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.11",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Francis Provencher {PRL}",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          }
        ],
        "trust": 1.4
      },
      "cve": "CVE-2021-25178",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25178",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383907",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25178",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25178",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "NONE",
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25178",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-25178",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25178",
                "trust": 1.4,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25178",
                "trust": 0.7,
                "value": "LOW"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1314",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383907",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-25178",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. This can allow attackers to cause a crash potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF and DWG files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          }
        ],
        "trust": 3.69
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25178",
            "trust": 4.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-243",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220",
            "trust": 3.3
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-12166",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-12165",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11901",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "id": "VAR-202101-1901",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:21:02.332000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 2.1,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139573"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=1c3bdb36e22f42f5b9339f0ff806382c"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds writing (CWE-787) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 2.7,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-243/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-220/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-240/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25178"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "date": "2021-09-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "date": "2021-01-18T08:15:13.337000",
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-243"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-240"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-220"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383907"
          },
          {
            "date": "2021-03-04T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25178"
          },
          {
            "date": "2021-09-29T08:27:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          },
          {
            "date": "2022-04-08T13:23:27.877000",
            "db": "NVD",
            "id": "CVE-2021-25178"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0Drawings\u00a0SDK\u00a0 Out-of-bounds Vulnerability in Microsoft",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002749"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1314"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1192

    Vulnerability from variot - Updated: 2023-12-18 11:20

    A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. There is a resource management error vulnerability in the Drawings SDK, which is caused by a "free after use" error in the process of reading DGN files. Affected products and versions are as follows: Drawings SDK: Before 2022.4

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1192",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "jt2go",
            "scope": null,
            "trust": 1.4,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 1.4,
            "vendor": "open design alliance oda",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell \u0026 Jimmy Calderon (@vectors2final) of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          }
        ],
        "trust": 1.4
      },
      "cve": "CVE-2021-32944",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392930",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32944",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32944",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 2.8,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32944",
                "trust": 2.8,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32944",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-688",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392930",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32944",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. There is a resource management error vulnerability in the Drawings SDK, which is caused by a \"free after use\" error in the process of reading DGN files. Affected products and versions are as follows: Drawings SDK: Before 2022.4",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          }
        ],
        "trust": 4.86
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32944",
            "trust": 6.2
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-990",
            "trust": 2.5
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13468",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13413",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19152",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19151",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "id": "VAR-202106-1192",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:20:13.620000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "",
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "",
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "Drawings SDK Remediation of resource management error vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=153338"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-416",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-990/"
          },
          {
            "trust": 1.9,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-987/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.2,
            "url": "https://cwe.mitre.org/data/definitions/416.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:08.083000",
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-987"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-132"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-131"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392930"
          },
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32944"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2022-04-15T15:36:24.180000",
            "db": "NVD",
            "id": "CVE-2021-32944"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-688"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Siemens JT2Go DGN File Parsing Use-After-Free Remote Code Execution Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-990"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-987"
          }
        ],
        "trust": 1.4
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1189

    Vulnerability from variot - Updated: 2023-12-18 11:10

    Drawings SDK (All versions prior to 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of service condition or read sensitive information from memory. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. A buffer error vulnerability exists in the Drawings SDK that arises from a boundary condition. Affected products and versions are as follows: Drawings SDK: Before 2022.4

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1189",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 1.4,
            "vendor": "open design alliance oda",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "solid edge viewer",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ],
        "trust": 2.0
      },
      "cve": "CVE-2021-32938",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392924",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32938",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "NONE",
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32938",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32938",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.2,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "Low",
                "baseScore": 4.4,
                "baseSeverity": "Medium",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32938",
                "trust": 1.4,
                "value": "LOW"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-32938",
                "trust": 1.4,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32938",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-686",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392924",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32938",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Drawings SDK (All versions prior to 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of service condition or read sensitive information from memory. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DWG files. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages. A buffer error vulnerability exists in the Drawings SDK that arises from a boundary condition. Affected products and versions are as follows: Drawings SDK: Before 2022.4",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          }
        ],
        "trust": 4.86
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32938",
            "trust": 6.2
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-980",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-491245",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13378",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19161",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19146",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19073",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0960",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "id": "VAR-202106-1189",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:10:31.632000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "",
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=154863"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-125",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.5,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-980/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0960"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/125.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://cert-portal.siemens.com/productcert/txt/ssa-155599.txt"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:07.837000",
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-980"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-135"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-129"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-207"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392924"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32938"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2023-02-14T12:15:11.073000",
            "db": "NVD",
            "id": "CVE-2021-32938"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2023-02-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-686"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202104-1475

    Vulnerability from variot - Updated: 2023-12-18 11:07

    An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202104-1475",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.6"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2021.6"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.6",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Siemens reported these vulnerabilities to CISA.",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2021-31784",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 7.5,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-31784",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-391575",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 9.8,
                "baseSeverity": "Critical",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-31784",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-31784",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-31784",
                "trust": 0.8,
                "value": "Critical"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-1874",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-391575",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-31784",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784"
          }
        ],
        "trust": 1.8
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-31784",
            "trust": 3.4
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-391575",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "id": "VAR-202104-1475",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2023-12-18T11:07:31.592000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=149348"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds writing (CWE-787) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-31784"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-04-26T00:00:00",
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "date": "2021-04-26T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "date": "2021-12-24T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "date": "2021-04-26T19:15:08.613000",
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "date": "2021-04-26T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2022-04-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-391575"
          },
          {
            "date": "2021-05-04T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-31784"
          },
          {
            "date": "2021-12-24T07:47:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          },
          {
            "date": "2022-04-15T15:40:04.410000",
            "db": "NVD",
            "id": "CVE-2021-31784"
          },
          {
            "date": "2022-04-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0Drawings\u00a0SDK\u00a0 Out-of-bounds Vulnerability in Microsoft",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-006067"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-1874"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1897

    Vulnerability from variot - Updated: 2023-12-18 11:03

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1897",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.12"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.12",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "rgod",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2021-25174",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25174",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383903",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25174",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25174",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-25174",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25174",
                "trust": 0.7,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1323",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383903",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          }
        ],
        "trust": 2.34
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25174",
            "trust": 3.2
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-226",
            "trust": 3.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-12026",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "id": "VAR-202101-1897",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T11:03:58.795000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Open Design Alliance Drawings SDK Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139579"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Resource exhaustion (CWE-400) [NVD Evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": "CWE-400",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.5,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-226/"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25174"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 1.3,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "date": "2021-09-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "date": "2021-01-18T08:15:13.117000",
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-226"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383903"
          },
          {
            "date": "2021-09-29T08:26:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          },
          {
            "date": "2022-04-08T13:21:52.463000",
            "db": "NVD",
            "id": "CVE-2021-25174"
          },
          {
            "date": "2022-04-11T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0Drawings\u00a0SDK\u00a0 Resource Depletion Vulnerability",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002745"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1323"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1188

    Vulnerability from variot - Updated: 2023-12-18 10:52

    An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1188",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawings sdk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.1"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "solid edge viewer",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ],
        "trust": 2.0
      },
      "cve": "CVE-2021-32936",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392922",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32936",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32936",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32936",
                "trust": 1.4,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32936",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-680",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392922",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32936",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          }
        ],
        "trust": 3.6
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32936",
            "trust": 4.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-982",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-491245",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-365397",
            "trust": 1.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13408",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19072",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0960",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2700",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081108",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060909",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-01",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "id": "VAR-202106-1188",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T10:52:35.610000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=153330"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b2237aa5ac819041f827cc4fd4128631"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-32936 "
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.5,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-982/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"
          },
          {
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0960"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2700"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060909"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-32936"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://cert-portal.siemens.com/productcert/txt/ssa-155599.txt"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:07.747000",
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-982"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-206"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392922"
          },
          {
            "date": "2023-02-14T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32936"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2023-02-14T12:15:10.893000",
            "db": "NVD",
            "id": "CVE-2021-32936"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2023-02-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-680"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202101-1899

    Vulnerability from variot - Updated: 2023-12-18 10:51

    An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). Open Design Alliance Drawings SDK Has NULL A pointer dereference vulnerability exists.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202101-1899",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "jt2go",
            "scope": null,
            "trust": 1.4,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2021.11"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0.1"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          },
          {
            "model": "drawings sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2021.11",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.1.0.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "rgod",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2021-25176",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-25176",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-383905",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-25176",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-25176",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2021-25176",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-25176",
                "trust": 1.4,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202101-1316",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-383905",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-25176",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart). Open Design Alliance Drawings SDK Has NULL A pointer dereference vulnerability exists.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. The development kit accesses the data in .dwg and .dgn through a convenient, object-oriented API, and provides functions such as C++ API, support for repairing files, and support for .NET, JAVA, and Python development languages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          }
        ],
        "trust": 3.06
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-25176",
            "trust": 4.0
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-222",
            "trust": 3.3
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221",
            "trust": 3.3
          },
          {
            "db": "SIEMENS",
            "id": "SSA-663999",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-047-01",
            "trust": 1.4
          },
          {
            "db": "JVN",
            "id": "JVNVU92291213",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11989",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-11913",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.0577",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-040-06",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "id": "VAR-202101-1899",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T10:51:11.320000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit Siemens Siemens\u00a0Security\u00a0Advisory",
            "trust": 0.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Fixes for code issue vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=139575"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=1c3bdb36e22f42f5b9339f0ff806382c"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-476",
            "trust": 1.1
          },
          {
            "problemtype": "NULL Pointer dereference (CWE-476) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.7,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-222/"
          },
          {
            "trust": 2.6,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-221/"
          },
          {
            "trust": 2.0,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-040-06"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-663999.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-25176"
          },
          {
            "trust": 1.4,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-047-01"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu92291213/index.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.0577"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/476.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "date": "2021-09-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "date": "2021-01-18T08:15:13.227000",
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "date": "2021-01-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "date": "2021-02-24T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-221"
          },
          {
            "date": "2022-04-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-383905"
          },
          {
            "date": "2021-03-04T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-25176"
          },
          {
            "date": "2021-09-29T08:26:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-002747"
          },
          {
            "date": "2022-04-08T13:20:01.937000",
            "db": "NVD",
            "id": "CVE-2021-25176"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-222"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-221"
          }
        ],
        "trust": 1.4
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "code problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202101-1316"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202111-0809

    Vulnerability from variot - Updated: 2023-12-18 10:50

    An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DXF and DWG files. Crafted data in a DXF or DWG file (an invalid number of properties) can trigger a write operation past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. (DoS) It may be in a state. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202111-0809",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 2.8,
            "vendor": "open design alliance oda",
            "version": null
          },
          {
            "model": "solid edge viewer",
            "scope": null,
            "trust": 1.4,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawings software development kit",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.11"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.3.0.1"
          },
          {
            "model": "teamcenter visualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.1.0"
          },
          {
            "model": "teamcenter visualization",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0"
          },
          {
            "model": "jt2go",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "12.4.0.13"
          },
          {
            "model": "solid edge",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "se2022"
          },
          {
            "model": "teamcenter visualization",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "12.4.0"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.11"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_software_development_kit:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2022.11",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:13.1.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:solid_edge:se2022:-:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.3.0.1",
                    "versionStartIncluding": "13.2.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "12.4.0.13",
                    "versionStartIncluding": "12.4.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell \u0026 Jimmy Calderon (@vectors2final) of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          }
        ],
        "trust": 2.8
      },
      "cve": "CVE-2021-43336",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Medium",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Partial",
                "baseScore": 6.8,
                "confidentialityImpact": "Partial",
                "exploitabilityScore": null,
                "id": "CVE-2021-43336",
                "impactScore": null,
                "integrityImpact": "Partial",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "Medium",
                "trust": 0.9,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-43336",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 4.9,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2021-43336",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-43336",
                "trust": 4.9,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-43336",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202111-1217",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-43336",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DXF and DWG files. Crafted data in a DXF or DWG file (an invalid number of properties) can trigger a write operation past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. (DoS) It may be in a state. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DXF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          }
        ],
        "trust": 6.12
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-43336",
            "trust": 8.2
          },
          {
            "db": "ZDI",
            "id": "ZDI-22-334",
            "trust": 2.4
          },
          {
            "db": "SIEMENS",
            "id": "SSA-301589",
            "trust": 1.7
          },
          {
            "db": "SIEMENS",
            "id": "SSA-491245",
            "trust": 1.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-041-07",
            "trust": 1.5
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU98748974",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-15107",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19144",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19143",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19142",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19080",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19075",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19165",
            "trust": 0.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.0960",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022021108",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "id": "VAR-202111-0809",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.15799868
      },
      "last_update_date": "2023-12-18T10:50:00.081000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Vulnerabilities\u00a0in\u00a0the\u00a0ODA\u00a0Drawings\u00a0Software\u00a0Development\u00a0Kit",
            "trust": 3.6,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 1.4,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "title": "Siemens has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-301589.pdf"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=170359"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=fefc850707fc7ccce29d30c42162ee31"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-43336 "
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.0
          },
          {
            "problemtype": "Out-of-bounds writing (CWE-787) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 4.5,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 2.4,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-301589.pdf"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-22-334/"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-491245.html"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-43336"
          },
          {
            "trust": 0.9,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-041-07"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu98748974/"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022021108"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.0960"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-041-07-1"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-041-07-0"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2021-43336"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2022-02-15T00:00:00",
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "date": "2021-11-14T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "date": "2022-02-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "date": "2021-11-14T21:15:08.263000",
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "date": "2021-11-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2022-02-15T00:00:00",
            "db": "ZDI",
            "id": "ZDI-22-334"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-126"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-125"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-210"
          },
          {
            "date": "2023-03-01T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-209"
          },
          {
            "date": "2023-03-06T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-212"
          },
          {
            "date": "2023-02-24T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-43336"
          },
          {
            "date": "2023-02-17T02:09:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-007492"
          },
          {
            "date": "2023-02-24T15:53:38.813000",
            "db": "NVD",
            "id": "CVE-2021-43336"
          },
          {
            "date": "2023-02-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open Design Alliance (ODA) Drawing SDK DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-23-127"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-126"
          }
        ],
        "trust": 1.4
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202111-1217"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202106-1196

    Vulnerability from variot - Updated: 2023-12-18 10:45

    An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202106-1196",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "teamcenter visualization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.2"
          },
          {
            "model": "drawings sdk",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "opendesign",
            "version": "2022.4"
          },
          {
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.1"
          },
          {
            "model": "jt2go",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "13.2.0.2"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.4  all previous  s  - cve-2021-32938 , cve-2021-32936 , cve-2021-32940 , cve-2021-32948 , cve-2021-32950 , cve-2021-32944"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": "2022.5  all previous  s  - cve-2021-32946 , cve-2021-32952"
          },
          {
            "model": "drawings sdk",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "open design alliance",
            "version": null
          },
          {
            "model": "jt2go",
            "scope": null,
            "trust": 0.7,
            "vendor": "siemens",
            "version": null
          },
          {
            "model": "drawing sdk",
            "scope": null,
            "trust": 0.7,
            "vendor": "open design alliance oda",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2022.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:teamcenter_visualization:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.2",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:jt2go:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "13.2.0.2",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "10.4.1",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Mat Powell of Trend Micro Zero Day Initiative",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ],
        "trust": 1.3
      },
      "cve": "CVE-2021-32952",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "acInsufInfo": false,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": true,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-392938",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULMON",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-32952",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "MEDIUM",
                "trust": 0.1,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "ZDI",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-32952",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.4,
                "userInteraction": "REQUIRED",
                "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "NVD",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "IPA",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "JVNDB-2021-001881",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H \t",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2021-32952",
                "trust": 1.4,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-32952",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2021-001881",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202104-975",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202106-683",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-392938",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-32952",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Open Design Alliance Provided by Drawings SDK is a drafting software development kit. This product contains multiple vulnerabilities listed below. * Out-of-bounds read (CWE-125) - CVE-2021-32938 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32936 It was * Out-of-bounds read (CWE-125) - CVE-2021-32940 It was * DGN Improper checking of files for abnormal or exceptional conditions (CWE-754) - CVE-2021-32946 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32948 It was * Out-of-bounds read (CWE-125) - CVE-2021-32950 It was * Out-of-bounds writing (CWE-787) - CVE-2021-32952 It was * Use of freed memory (use-after-free) (CWE-416) - CVE-2021-32944The expected impact depends on each vulnerability, but it may be affected as follows. It was * crafted by the attacker DWG Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32938 It was * crafted by the attacker DXF Denial of service by opening files via recovery (DoS) state is triggered or code is executed - CVE-2021-32936 It was * crafted by the attacker DWG Denial of service by opening files via recovery (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32940 It was * crafted by the attacker DGN Denial of service by reading the file (DoS) state is triggered or code is executed - CVE-2021-32946 , CVE-2021-32952 It was * crafted by the attacker DWG Denial of service by opening the file (DoS) state is triggered or code is executed - CVE-2021-32948 It was * crafted by the attacker DXF Denial of service by opening the file (DoS) triggering a condition or reading sensitive information from memory - CVE-2021-32950 It was * Crafted by an attacker by an attacker DGN Denial of service by opening the file (DoS) A condition is triggered or arbitrary code is executed - CVE-2021-32944. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of DGN files. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          }
        ],
        "trust": 3.6
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-32952",
            "trust": 4.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-159-02",
            "trust": 2.6
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-989",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-155599",
            "trust": 1.8
          },
          {
            "db": "SIEMENS",
            "id": "SSA-938030",
            "trust": 1.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97514209",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU95145431",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-23-047-01",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-13417",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-19137",
            "trust": 0.7
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-069-06",
            "trust": 0.7
          },
          {
            "db": "CS-HELP",
            "id": "SB2021041363",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021060908",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021081107",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031102",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2046",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1047",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.2702",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-21-222-03",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "id": "VAR-202106-1196",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          }
        ],
        "trust": 0.25799868000000004
      },
      "last_update_date": "2023-12-18T10:45:09.848000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Open\u00a0Design\u00a0Alliance\u00a0( Login required ) Open\u00a0Design\u00a0Alliance",
            "trust": 0.8,
            "url": "https://docs.opendesign.com/td/frames.html?frmname=topic\u0026frmfile=movingtonewversion.html"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "title": "",
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "title": "Open Design Alliance Drawings SDK Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=153333"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=e0bde73e6fac136c31fc4dfabb276eae"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=dce38d2a1ec28e091a143e851596b2e8"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "Out-of-bounds read (CWE-125) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Use of freed memory (CWE-416) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Improper checking in exceptional conditions (CWE-754) [IPA evaluation ]",
            "trust": 0.8
          },
          {
            "problemtype": " Out-of-bounds writing (CWE-787) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"
          },
          {
            "trust": 2.4,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-989/"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"
          },
          {
            "trust": 1.8,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32952"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu95145431"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97514209/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32936"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32938"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32940"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32944"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32946"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32948"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32950"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-047-01"
          },
          {
            "trust": 0.7,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf"
          },
          {
            "trust": 0.7,
            "url": "https://www.opendesign.com/security-advisories"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1047"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-222-03"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021081107"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2046"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.2702"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021060908"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031102"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.2,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://cert-portal.siemens.com/productcert/txt/ssa-938030.txt"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-069-06"
          },
          {
            "trust": 0.1,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-23-123/"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "date": "2021-06-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "date": "2021-06-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2021-06-17T13:15:08.337000",
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "date": "2021-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2021-06-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-989"
          },
          {
            "date": "2023-02-09T00:00:00",
            "db": "ZDI",
            "id": "ZDI-23-123"
          },
          {
            "date": "2022-05-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-392938"
          },
          {
            "date": "2022-05-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-32952"
          },
          {
            "date": "2023-02-17T05:48:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          },
          {
            "date": "2022-05-13T17:30:58.490000",
            "db": "NVD",
            "id": "CVE-2021-32952"
          },
          {
            "date": "2021-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          },
          {
            "date": "2022-03-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202106-683"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Open\u00a0Design\u00a0Alliance\u00a0 Made \u00a0Drawings\u00a0SDK\u00a0 Multiple vulnerabilities in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001881"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202104-975"
          }
        ],
        "trust": 0.6
      }
    }