Bentley Systems MicroStation Connect versions
10.17.0.209 and prior are vulnerable to an Out-of-Bounds Read when when parsing DGN files, which may allow an attacker to crash the product, disclose sensitive information, or execute arbitrary code.
References
Link | Resource |
---|---|
https://www.bentley.com/advisories/be-2023-0003/ | |
https://www.cisa.gov/uscert/ics/advisories/icsa-22-293-01 | Third Party Advisory US Government Resource |
Configurations
History
02 Feb 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:52
Type | Values Removed | Values Added |
---|---|---|
Summary | Bentley Systems MicroStation Connect versions 10.17.0.209 and prior are vulnerable to an Out-of-Bounds Read when when parsing DGN files, which may allow an attacker to crash the product, disclose sensitive information, or execute arbitrary code. |
12 Jan 2023, 20:17
Type | Values Removed | Values Added |
---|---|---|
First Time |
Bentley microstation Connect
Bentley |
|
References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-293-01 - Third Party Advisory, US Government Resource | |
CPE | cpe:2.3:a:bentley:microstation_connect:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
06 Jan 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-06 22:15
Updated : 2024-02-02 06:15
NVD link : CVE-2022-41613
Mitre link : CVE-2022-41613
CVE.ORG link : CVE-2022-41613
JSON object : View
Products Affected
bentley
- microstation_connect
CWE
CWE-125
Out-of-bounds Read