Openscad
Products
1- 7 CVEs
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-0496 | 0.00 | — | 0.00 | Aug 29, 2022 | A vulnerbiility was found in Openscad, where a DXF-format drawing with particular (not necessarily malformed!) properties may cause an out-of-bounds memory access when imported using import(). | |||
| CVE-2022-0497 | 0.00 | — | 0.00 | Aug 29, 2022 | A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations. | |||
| CVE-2020-28600 | 0.00 | — | 0.01 | May 10, 2021 | An out-of-bounds write vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||
| CVE-2020-28599 | 0.00 | — | 0.01 | Feb 24, 2021 | A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||
| CVE-2020-26570 | 0.00 | — | 0.00 | Oct 6, 2020 | The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. | |||
| CVE-2020-26571 | 0.00 | — | 0.00 | Oct 6, 2020 | The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init. | |||
| CVE-2020-26572 | 0.00 | — | 0.00 | Oct 6, 2020 | The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher. |
- CVE-2022-0496Aug 29, 2022risk 0.00cvss —epss 0.00
A vulnerbiility was found in Openscad, where a DXF-format drawing with particular (not necessarily malformed!) properties may cause an out-of-bounds memory access when imported using import().
- CVE-2022-0497Aug 29, 2022risk 0.00cvss —epss 0.00
A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations.
- CVE-2020-28600May 10, 2021risk 0.00cvss —epss 0.01
An out-of-bounds write vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
- CVE-2020-28599Feb 24, 2021risk 0.00cvss —epss 0.01
A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
- CVE-2020-26570Oct 6, 2020risk 0.00cvss —epss 0.00
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file.
- CVE-2020-26571Oct 6, 2020risk 0.00cvss —epss 0.00
The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init.
- CVE-2020-26572Oct 6, 2020risk 0.00cvss —epss 0.00
The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher.