High severityNVD Advisory· Published Apr 3, 2023· Updated Feb 11, 2025
CVE-2022-38072
CVE-2022-38072
Description
An improper array index validation vulnerability exists in the stl_fix_normal_directions functionality of ADMesh Master Commit 767a105 and v0.98.4. A specially-crafted stl file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
admeshPyPI | < 0.98.5 | 0.98.5 |
Affected products
2Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-v5hv-4pw3-q6h9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-38072ghsaADVISORY
- github.com/admesh/admesh/commit/5fab257268a0ee6f832c18d72af89810a29fbd5fghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/admesh/PYSEC-2023-263.yamlghsaWEB
- talosintelligence.com/vulnerability_reports/TALOS-2022-1594ghsaWEB
News mentions
0No linked articles in our index yet.