Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2021-27494
HistoryMay 27, 2021 - 3:26 p.m.

CVE-2021-27494

2021-05-2715:26:36
CWE-121
icscert
www.cve.org

0.004 Low

EPSS

Percentile

73.1%

JSON

Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files. This could result in a stack-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process.

CNA Affected

[
  {
    "product": "Datakit Software libraries embedded in Luxion KeyShot software",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
zdi 1
ics 1
prion
prion
Stack overflow
2021-05-27 16:15:00
nvd
nvd
CVE-2021-27494
2021-05-27 16:15:08
cve
cve
CVE-2021-27494
2021-05-27 16:15:08
zdi
zdi
(0Day) Siemens Solid Edge Viewer STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
2021-05-12 00:00:00
ics
ics
Datakit Libraries bundled in Luxion KeyShot
2021-05-25 12:00:00

0.004 Low

EPSS

Percentile

73.1%

JSON
Related for CVELIST:CVE-2021-27494
prion1nvd1cve1zdi1ics1