CVE-2021-39522

Severity

8.8HIGH

EPSS

0.4%

top 40.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedSep 20

Latest updateMay 24

Description

An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

▶NVDgnu/libredwg0.10.1.3751

GHSA

GHSA-wvpq-xgwf-69c4: An issue was discovered in libredwg through v0↗2022-05-24

▶

CVEList

CVE-2021-39522: An issue was discovered in libredwg through v0↗2021-09-20

▶