HIGH🇵🇱 Wersja polska

CVE-2022-36788

CVSS 8.1v3.1pub. 2023-04-20upd. 2024-11-21

A heap-based buffer overflow vulnerability exists in the TriangleMesh clone functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially-crafted STL file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Slic3r Libslic3r

    APP
    Slic3R
    1.3.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2022-38072MEDIUM6.5ten sam produkt

An improper array index validation vulnerability exists in the stl_fix_normal_directions functionality of ADMe...

CVE-2021-44961MEDIUM5.5ten sam produkt

A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a55...

CVE-2021-44962MEDIUM5.5ten sam produkt

An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and...

CVE-2020-28590MEDIUM6.5ten sam produkt

An out-of-bounds read vulnerability exists in the Obj File TriangleMesh::TriangleMesh() functionality of Slic3...

CVE-2020-28591MEDIUM6.5ten sam produkt

An out-of-bounds read vulnerability exists in the AMF File AMFParserContext::endElement() functionality of Sli...