Vulnerabilities (CVE)

Filtered by vendor Opendesign Subscribe
Filtered by product Oda Viewer
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-43276 1 Opendesign 1 Oda Viewer 2024-11-21 6.8 MEDIUM 7.8 HIGH
An Out-of-bounds Read vulnerability exists in Open Design Alliance ODA Viewer before 2022.8. Crafted data in a DWF file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process
CVE-2021-43272 1 Opendesign 1 Oda Viewer 2024-11-21 7.5 HIGH 9.8 CRITICAL
An improper handling of exceptional conditions vulnerability exists in Open Design Alliance ODA Viewer sample before 2022.11. ODA Viewer continues to process invalid or malicious DWF files instead of stopping upon an exception. An attacker can leverage this vulnerability to execute code in the context of the current process.