Lucene search
China National Vulnerability DatabaseCNVD-2022-08177HistoryJan 27, 2022 - 12:00 a.m.
FreeCAD ODA Command Injection Vulnerability
2022-01-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.002 Low
EPSS
Percentile
53.9%
FreeCad is a free and open source general-purpose parametric 3D Cad modeler from the FreeCad community and supports finite element method building information modeling software. FreeCAD version 0.19 is vulnerable to a command injection vulnerability that originates from improper cleanup when invoking the ODA file converter. An attacker could exploit this vulnerability to inject operating system commands via crafted filenames.
| CPE | Name | Operator | Version |
|---|---|---|---|
| freecad freecad | eq | 0.19 |
Related
veracode
veracode
OS Command Injection
2022-03-09 13:17:59
prion
prion
Input validation
2022-01-25 13:15:00
openvas
openvas
Debian: Security Advisory (DLA-2934-1)
2022-03-08 00:00:00
Debian: Security Advisory (DLA-3076-1)
2022-08-19 00:00:00
Mageia: Security Advisory (MGASA-2022-0325)
2022-09-19 00:00:00
ubuntucve
ubuntucve
CVE-2021-45844
2022-01-25 00:00:00
cve
cve
CVE-2021-45844
2022-01-25 13:15:07
cvelist
cvelist
CVE-2021-45844
2022-01-25 12:42:03
osv
osv
freecad - security update
2022-08-18 00:00:00
freecad - security update
2022-03-07 00:00:00
freecad - security update
2022-09-13 00:00:00
nessus
nessus
Debian DLA-3076-1 : freecad - LTS security update
2022-08-18 00:00:00
Debian DLA-2934-1 : freecad - LTS security update
2022-03-07 00:00:00
Debian DSA-5229-1 : freecad - security update
2022-09-14 00:00:00
nvd
nvd
CVE-2021-45844
2022-01-25 13:15:07
debiancve
debiancve
CVE-2021-45844
2022-01-25 13:15:07
mageia
mageia
Updated freecad packages fix security vulnerability
2022-09-16 22:39:55
debian
debian
[SECURITY] [DLA 3076-1] freecad security update
2022-08-18 12:20:22
[SECURITY] [DLA 2934-1] freecad security update
2022-03-07 12:21:29
[SECURITY] [DLA 2934-1] freecad security update
2022-03-07 12:10:47