Multiple stack-based buffer overflow vulnerabilities exist in the readOFF.cpp functionality of libigl v2.4.0. A specially-crafted .off file can lead to a buffer overflow. An attacker can arbitrary code execution to trigger these vulnerabilities.This vulnerability exists within the code responsible for parsing comments within the geometric vertices section within an OFF file.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
| https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
| https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
| https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 | Exploit Mitigation Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
12 Feb 2025, 16:10
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-787 | |
| CPE | cpe:2.3:a:libigl:libigl:2.5.0:*:*:*:*:*:*:* cpe:2.3:a:libigl:libigl:2.4.0:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
| First Time |
Libigl libigl
Libigl |
|
| References | () https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784 - Exploit, Mitigation, Third Party Advisory | |
| References | () https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784 - Exploit, Mitigation, Third Party Advisory |
10 Jun 2024, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
28 May 2024, 14:59
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-05-28 14:15
Updated : 2025-02-12 16:10
NVD link : CVE-2023-35953
Mitre link : CVE-2023-35953
JSON object : View
Products Affected
libigl
- libigl
CWE
CWE-787
Out-of-bounds Write