Multiple stack-based buffer overflow vulnerabilities exist in the readOFF.cpp functionality of libigl v2.4.0. A specially-crafted .off file can lead to a buffer overflow. An attacker can arbitrary code execution to trigger these vulnerabilities.This vulnerability exists within the code responsible for parsing comments within the geometric faces section within an OFF file.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
| https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Mitigation Third Party Advisory |
| https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
| https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Mitigation Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
12 Feb 2025, 16:10
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 - Mitigation, Third Party Advisory | |
| References | () https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 - Mitigation, Third Party Advisory | |
| First Time |
Libigl libigl
Libigl |
|
| CWE | CWE-787 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
| CPE | cpe:2.3:a:libigl:libigl:2.5.0:*:*:*:*:*:*:* cpe:2.3:a:libigl:libigl:2.4.0:*:*:*:*:*:*:* |
10 Jun 2024, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
28 May 2024, 14:59
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-05-28 14:15
Updated : 2025-02-12 16:10
NVD link : CVE-2023-35952
Mitre link : CVE-2023-35952
JSON object : View
Products Affected
libigl
- libigl
CWE
CWE-787
Out-of-bounds Write