Librecad Libdxfrw vulnerabilities
3 known vulnerabilities affecting librecad/libdxfrw.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2021-21899HIGHCVSS 8.8v2.2.0-rc2-19-ge02f35802021-11-19
CVE-2021-21899 [HIGH] CWE-119 CVE-2021-21899: A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCa
A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
nvd
CVE-2021-21898HIGHCVSS 8.8v2.2.0-rc2-19-ge02f35802021-11-19
CVE-2021-21898 [HIGH] CWE-119 CVE-2021-21898: A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad
A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
nvd
CVE-2021-21900HIGHCVSS 8.8v2.2.0-rc2-19-ge02f35802021-11-19
CVE-2021-21900 [HIGH] CWE-416 CVE-2021-21900: A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfr
A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dxf file can lead to a use-after-free vulnerability. An attacker can provide a malicious file to trigger this vulnerability.
nvd