VYPR
Vendor

FreeCAD

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2021-45844HigJan 25, 2022
    risk 0.51cvss 7.8epss 0.01

    Improper sanitization in the invocation of ODA File Converter from FreeCAD 0.19 allows an attacker to inject OS commands via a crafted filename.

  • CVE-2021-45845HigJan 25, 2022
    risk 0.00cvss 7.8epss 0.02

    The Path Sanity Check script of FreeCAD 0.19 is vulnerable to OS command injection, allowing an attacker to execute arbitrary commands via a crafted FCStd document.