CVE-2022-28308 in Viewinformación

Resumen

por MITRE • 2023-03-29

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.02.022. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of 3DS files. Crafted data in a 3DS file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-16307.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

2022-03-31

Divulgación

2023-03-29

Moderación

aceptado

Artículo

VDB-224477

CPE

listo

EPSS

0.00613

KEV

no

Actividades

muy bajo

Fuentes

Might our Artificial Intelligence support you?

Check our Alexa App!