CVE-2022-35901
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Using an affected version of MicroStation or MicroStation-based application to open a J2K file containing crafted data can force an out-of-bounds read. Exploitation of these vulnerabilities within the parsing of J2K files could enable an attacker to read information in the context of the current process.
Se ha detectado un problema en Bentley MicroStation versiones anteriores a 10.17.0.x y en Bentley View versiones anteriores a 10.17.0.x. El uso de una versión afectada de MicroStation o de una aplicación basada en MicroStation para abrir un archivo J2K que contenga datos diseñados puede forzar una lectura fuera de límites. Una explotación de estas vulnerabilidades en el análisis de archivos J2K podría permitir a un atacante leer información en el contexto del proceso actual
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-07-15 CVE Reserved
- 2022-07-15 CVE Published
- 2024-02-05 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-125: Out-of-bounds Read
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.bentley.com/en/common-vulnerability-exposure/be-2022-0014 | 2022-07-21 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Bentley Search vendor "Bentley" | Microstation Search vendor "Bentley" for product "Microstation" | < 10.17.0 Search vendor "Bentley" for product "Microstation" and version " < 10.17.0" | - |
Affected
| ||||||
Bentley Search vendor "Bentley" | View Search vendor "Bentley" for product "View" | < 10.17.0 Search vendor "Bentley" for product "View" and version " < 10.17.0" | - |
Affected
|