Vulnerability in Bentley MicroStation and MicroStation-based Applications: Out-of-Bounds and Stack Overflow Issues in Crafted XMT File Handling

Vulnerability in Bentley MicroStation and MicroStation-based Applications: Out-of-Bounds and Stack Overflow Issues in Crafted XMT File Handling

CVE-2022-42901 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds and stack overflow issues when opening crafted XMT files. Exploiting these issues could lead to information disclosure and code execution. The fixed versions are 10.17.01.58* for MicroStation and 10.17.01.19* for Bentley View.

Learn more about our Web Application Penetration Testing UK.