Out-of-Bounds Read Vulnerability in Bentley MicroStation and Bentley View

Out-of-Bounds Read Vulnerability in Bentley MicroStation and Bentley View

CVE-2022-35900 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Using an affected version of MicroStation or MicroStation-based application to open a JP2 file containing crafted data can force an out-of-bounds read. Exploitation of these vulnerabilities within the parsing of JP2 files could enable an attacker to read information in the context of the current process.

Learn more about our Web Application Penetration Testing UK.