CVE-2021-42702

Inkscape version 0.91 can access an uninitialized pointer, which may allow an attacker to have access to unauthorized information.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03 Third Party Advisory US Government Resource
https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/ Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:inkscape:inkscape:0.91:*:*:*:*:*:*:*

History

02 Jun 2022, 17:07

Type Values Removed Values Added
References (CONFIRM) https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/ - (CONFIRM) https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/ - Exploit, Third Party Advisory

02 Jun 2022, 14:15

Type Values Removed Values Added
Summary Inkscape version 0.19 can access an uninitialized pointer, which may allow an attacker to have access to unauthorized information. Inkscape version 0.91 can access an uninitialized pointer, which may allow an attacker to have access to unauthorized information.
References
  • (CONFIRM) https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/ -

25 May 2022, 12:08

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 4.3
v3 : 3.3
CPE cpe:2.3:a:inkscape:inkscape:0.91:*:*:*:*:*:*:*
References (CONFIRM) https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03 - (CONFIRM) https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03 - Third Party Advisory, US Government Resource
First Time Inkscape
Inkscape inkscape

18 May 2022, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-18 17:15

Updated : 2023-12-10 14:22


NVD link : CVE-2021-42702

Mitre link : CVE-2021-42702

CVE.ORG link : CVE-2021-42702


JSON object : View

Products Affected

inkscape

  • inkscape
CWE
CWE-824

Access of Uninitialized Pointer