CVE-2021-31784
published 2021-04-26CVE-2021-31784: An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart) or possible code execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opendesign | drawings_sdk | < 2021.6 | 2021.6 |
| siemens | comos | < 10.4.1 | 10.4.1 |