Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Out-Of-Bounds Write and Type Confusion vulnerabilities exist in the DWG and DXF file reading procedure in eDrawings from Release SOLIDWORKS 2023 through Release SOLIDWORKS 2024
Vulnerability Description
Out-Of-Bounds Write and Type Confusion vulnerabilities exist in the file reading procedure in eDrawings from Release SOLIDWORKS 2023 through Release SOLIDWORKS 2024. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted DWG or DXF. NOTE: this vulnerability was SPLIT from CVE-2024-1847.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
SOLIDWORKS eDrawings 安全漏洞
Vulnerability Description
SOLIDWORKS eDrawings是SOLIDWORKS公司的一款由SolidWorks公司推出的查看和共享CAD模型的应用程序。 SOLIDWORKS eDrawings 2023至2024版本存在安全漏洞,该漏洞源于文件读取过程中存在越界写入和类型混淆漏洞。
CVSS Information
N/A
Vulnerability Type
N/A