{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2021-32938","assignerOrgId":"7d14cffa-0d7d-4270-9dc0-52cabd5a23a6","assignerShortName":"icscert","dateUpdated":"2024-08-03T23:33:55.918Z","dateReserved":"2021-05-13T00:00:00.000Z","datePublished":"2021-06-17T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"7d14cffa-0d7d-4270-9dc0-52cabd5a23a6","shortName":"icscert","dateUpdated":"2023-02-14T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"Drawings SDK (All versions prior to 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of service condition or read sensitive information from memory."}],"affected":[{"vendor":"n/a","product":"Drawings SDK","versions":[{"version":"All versions prior to 2022.4","status":"affected"}]}],"references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf"},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-21-980/"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"}],"problemTypes":[{"descriptions":[{"type":"CWE","lang":"en","description":"OUT-OF-BOUNDS READ CWE-125","cweId":"CWE-125"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T23:33:55.918Z"},"title":"CVE Program Container","references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02","tags":["x_transferred"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf","tags":["x_transferred"]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-21-980/","tags":["x_transferred"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf","tags":["x_transferred"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf","tags":["x_transferred"]}]}]}}