{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T22:15:46.540","vulnerabilities":[{"cve":{"id":"CVE-2023-5180","sourceIdentifier":"8a9629cb-c5e7-4d2a-a894-111e8039b7ea","published":"2023-12-26T09:15:07.197","lastModified":"2024-11-21T08:41:14.873","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Open Design Alliance\nDrawings SDK before 2024.12. A corrupted value of number\nof sectors used by the Fat structure in a crafted DGN file leads to an\nout-of-bounds write. An attacker can leverage this vulnerability to execute\ncode in the context of the current process."},{"lang":"es","value":"Se descubrió un problema en Open Design Alliance Drawings SDK antes del 2024.12. Un valor corrupto del número de sectores utilizados por la estructura Fat en un archivo DGN diseñado provoca una escritura fuera de los límites. Un atacante puede aprovechar esta vulnerabilidad para ejecutar código en el contexto del proceso actual."}],"metrics":{"cvssMetricV31":[{"source":"8a9629cb-c5e7-4d2a-a894-111e8039b7ea","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"8a9629cb-c5e7-4d2a-a894-111e8039b7ea","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opendesign:drawings_sdk:*:*:*:*:*:*:*:*","versionEndExcluding":"2024.12","matchCriteriaId":"0DFA8267-F3BE-470D-8077-A46EAD298F27"}]}]}],"references":[{"url":"https://www.opendesign.com/security-advisories","source":"8a9629cb-c5e7-4d2a-a894-111e8039b7ea","tags":["Vendor Advisory"]},{"url":"https://www.opendesign.com/security-advisories","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}