Vulnerabilities (CVE)

Filtered by vendor Opendesign Subscribe
Filtered by product Oda Prc Software Development Kit
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-43279 1 Opendesign 1 Oda Prc Software Development Kit 2024-11-21 6.8 MEDIUM 7.8 HIGH
An out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.
CVE-2021-43277 1 Opendesign 1 Oda Prc Software Development Kit 2024-11-21 6.8 MEDIUM 7.8 HIGH
An out-of-bounds read vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.