Out-of-Bounds Read Vulnerability in Open Design Alliance Drawings SDK

Out-of-Bounds Read Vulnerability in Open Design Alliance Drawings SDK

CVE-2022-28807 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process.

Learn more about our Web Application Penetration Testing UK.