VYPR

openscad

by Openscad

CVEs (9)

  • CVE-2026-40528LowMay 29, 2026
    Opensc Project
    libopensc
    risk 0.18cvss 3.8epss

    OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the do_key_value() function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init…

  • CVE-2026-40510LowMay 29, 2026
    Opensc Project
    libopensc
    risk 0.18cvss 3.8epss

    OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device…

  • CVE-2022-0497Aug 29, 2022
    Openscad
    openscad
    risk 0.00cvss epss 0.00

    A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations.

  • CVE-2022-0496Aug 29, 2022
    Openscad
    openscad
    risk 0.00cvss epss 0.00

    A vulnerbiility was found in Openscad, where a DXF-format drawing with particular (not necessarily malformed!) properties may cause an out-of-bounds memory access when imported using import().

  • CVE-2020-28600May 10, 2021
    Openscad
    openscad
    risk 0.00cvss epss 0.01

    An out-of-bounds write vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2020-28599Feb 24, 2021
    Openscad
    openscad
    risk 0.00cvss epss 0.01

    A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2020-26570Oct 6, 2020
    Openscad
    openscad
    risk 0.00cvss epss 0.00

    The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file.

  • CVE-2020-26571Oct 6, 2020
    Openscad
    openscad
    risk 0.00cvss epss 0.00

    The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init.

  • CVE-2020-26572Oct 6, 2020
    Openscad
    openscad
    risk 0.00cvss epss 0.00

    The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher.