LibreDWG 0.12.4.4608 decode.c dwg_add_object heap-based overflow

A vulnerability was found in LibreDWG 0.12.4.4608 (Image Processing Software). It has been classified as critical. Affected is the function dwg_add_object of the file decode.c. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

022
118

Field

exploit_price_0day1
vulnerability_cvss3_meta_tempscore1
vulnerability_cvss3_meta_basescore1
vulnerability_cvss3_vuldb_tempscore1
vulnerability_cvss3_vuldb_basescore1

Commit Conf

90%27
50%13

Approve Conf

90%27
80%13
IDCommitedUserFieldChangeRemarksAcceptedReasonC
1264279206/23/2022VulD...price_0day$0-$5ksee exploit price documentation06/23/2022accepted
90
1264279106/23/2022VulD...cvss3_meta_tempscore5.5see CVSS documentation06/23/2022accepted
90
1264279006/23/2022VulD...cvss3_meta_basescore5.5see CVSS documentation06/23/2022accepted
90
1264278906/23/2022VulD...cvss3_vuldb_tempscore5.5see CVSS documentation06/23/2022accepted
90
1264278806/23/2022VulD...cvss3_vuldb_basescore5.5see CVSS documentation06/23/2022accepted
90
1264278706/23/2022VulD...cvss2_vuldb_tempscore5.2see CVSS documentation06/23/2022accepted
90
1264278606/23/2022VulD...cvss2_vuldb_basescore5.2see CVSS documentation06/23/2022accepted
90
1264278506/23/2022VulD...cvss3_vuldb_rlXderived from historical data06/23/2022accepted
80
1264278406/23/2022VulD...cvss3_vuldb_eXderived from historical data06/23/2022accepted
80
1264278306/23/2022VulD...cvss3_vuldb_prLderived from historical data06/23/2022accepted
80
1264278206/23/2022VulD...cvss3_vuldb_avAderived from historical data06/23/2022accepted
80
1264278106/23/2022VulD...cvss2_vuldb_rlNDderived from historical data06/23/2022accepted
80
1264278006/23/2022VulD...cvss2_vuldb_eNDderived from historical data06/23/2022accepted
80
1264277906/23/2022VulD...cvss2_vuldb_auSderived from historical data06/23/2022accepted
80
1264277806/23/2022VulD...cvss2_vuldb_avAderived from historical data06/23/2022accepted
80
1264277706/23/2022VulD...cvss2_vuldb_rcCderived from vuldb v3 vector06/23/2022accepted
80
1264277606/23/2022VulD...cvss2_vuldb_aiPderived from vuldb v3 vector06/23/2022accepted
80
1264277506/23/2022VulD...cvss2_vuldb_iiPderived from vuldb v3 vector06/23/2022accepted
80
1264277406/23/2022VulD...cvss2_vuldb_ciPderived from vuldb v3 vector06/23/2022accepted
80
1264277306/23/2022VulD...cvss2_vuldb_acLderived from vuldb v3 vector06/23/2022accepted
80

20 more entries are not shown

Might our Artificial Intelligence support you?

Check our Alexa App!