CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-30259
https://notcve.org/view.php?id=CVE-2023-30259
28 Jun 2023 — A Buffer Overflow vulnerability in importshp plugin in LibreCAD 2.2.0 allows attackers to obtain sensitive information via a crafted DBF file. • https://github.com/LibreCAD/LibreCAD/issues/1481 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 1%CPEs: 8EXPL: 1CVE-2021-45341 – Gentoo Linux Security Advisory 202305-26
https://notcve.org/view.php?id=CVE-2021-45341
25 Jan 2022 — A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document. Una vulnerabilidad de desbordamiento de búfer en CDataMoji del componente jwwlib de LibreCAD versiones 2.2.0-rc3 y anteriores, permite a un atacante lograr la Ejecución de Código Remota usando un documento JWW diseñado Cody Sixteen discovered that LibreCAD incorrectly handled memory when parsing DXF files. An attacker could use... • https://github.com/LibreCAD/LibreCAD/issues/1462 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 1CVE-2021-45342 – Gentoo Linux Security Advisory 202305-26
https://notcve.org/view.php?id=CVE-2021-45342
25 Jan 2022 — A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document. Una vulnerabilidad de desbordamiento de búfer en CDataList del componente jwwlib de LibreCAD versiones 2.2.0-rc3 y anteriores, permite a un atacante lograr una Ejecución de Código Remota usando un documento JWW diseñado Multiple security issues were discovered in LibreCAD, an application for computer aided design (CAD) which co... • https://github.com/LibreCAD/LibreCAD/issues/1464 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 1CVE-2021-45343 – Gentoo Linux Security Advisory 202305-26
https://notcve.org/view.php?id=CVE-2021-45343
25 Jan 2022 — In LibreCAD 2.2.0, a NULL pointer dereference in the HATCH handling of libdxfrw allows an attacker to crash the application using a crafted DXF document. En LibreCAD versión 2.2.0, una desreferencia de puntero NULL en el manejo de HATCH de libdxfrw permite a un atacante bloquear la aplicación usando un documento DXF diseñado Cody Sixteen discovered that LibreCAD incorrectly handled memory when parsing DXF files. An attacker could use this issue to cause LibreCAD to crash, leading to a denial of service. Thi... • https://github.com/LibreCAD/LibreCAD/issues/1468 • CWE-476: NULL Pointer Dereference •