CVE-2021-45950

Severity

6.5MEDIUM

EPSS

0.2%

top 53.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 1

Latest updateJan 2

Description

LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private (called from dwg_free_BLOCK and dwg_free_object).

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

▶NVDgnu/libredwg0.12.4.4313 — 0.12.4.4367

GHSA

GHSA-x4cp-hqhf-j5rh: LibreDWG 0↗2022-01-02

▶

CVEList

CVE-2021-45950: LibreDWG 0↗2021-12-31

▶