NULL Pointer Dereference Vulnerability in Open Design Alliance Drawings SDK

NULL Pointer Dereference Vulnerability in Open Design Alliance Drawings SDK

CVE-2021-25176 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart).

Learn more about our Web Application Penetration Testing UK.