GCVE - cpe:2.3:a:n/a:drawings_sdk:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:drawings_sdk:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Drawings Sdk (`2cdd8675-b83c-544d-ae51-32e014265d5c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-32952`	vulnerable	2026-06-08 05:32:08.250764	Details available An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Published: 2021-06-17T12:05:05.000Z Updated: 2024-08-03T23:33:56.218Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02 https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-989/ https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32950`	vulnerable	2026-06-08 05:32:08.244938	Details available An out-of-bounds read issue exists within the parsing of DXF files in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows attackers to cause a denial-of-service condition or read sensitive information from memory locations. Published: 2021-06-17T12:41:51.000Z Updated: 2024-08-03T23:33:56.120Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02 https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-988/ https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32948`	vulnerable	2026-06-08 05:32:08.243858	Details available An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Published: 2021-06-17T00:00:00.000Z Updated: 2024-08-03T23:33:56.055Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02 https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-984/ https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32946`	vulnerable	2026-06-08 05:32:08.243122	Details available An improper check for unusual or exceptional conditions issue exists within the parsing DGN files from Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of the user-supplied data. This may result in several of out-of-bounds problems and allow attackers to cause a denial-of-service condition or execute code in the context of the current process. Published: 2021-06-17T11:56:39.000Z Updated: 2024-08-03T23:33:55.940Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02 https://cert-portal.siemens.com/productcert/pdf/ssa-938030.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-983/ https://www.zerodayinitiative.com/advisories/ZDI-21-985/ https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32944`	vulnerable	2026-06-08 05:32:08.241975	Details available A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing attackers to cause a denial-of-service condition or execute code in the context of the current process. Published: 2021-06-17T12:50:37.000Z Updated: 2024-08-03T23:33:55.939Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-159-02 https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf https://www.zerodayinitiative.com/advisories/ZDI-21-987/ https://www.zerodayinitiative.com/advisories/ZDI-21-990/ https://cert-portal.siemens.com/productcert/pdf/ssa-155599.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32940`	vulnerable	2026-06-08 05:32:08.227919	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32938`	vulnerable	2026-06-08 05:32:08.227161	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32936`	vulnerable	2026-06-08 05:32:08.223231	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.