Home > Vulnerability Database > CVE-2023-35952

Mend.io Vulnerability Database

CVE-2023-35952

Date: May 28, 2024

Multiple stack-based buffer overflow vulnerabilities exist in the readOFF.cpp functionality of libigl v2.4.0. A specially-crafted .off file can lead to a buffer overflow. An attacker can arbitrary code execution to trigger these vulnerabilities.This vulnerability exists within the code responsible for parsing comments within the geometric faces section within an OFF file.

Language: C++

Severity Score

7.8

Related Resources (5)

Url: https://security-tracker.debian.org/tracker/CVE-2023-35952

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-35952

Url: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784

Url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784

Url: https://www.mend.io/vulnerability-database/CVE-2023-35952

Severity Score

7.8

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

Stack-based Buffer Overflow

CWE-121

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-35952

Date: May 28, 2024

Language: C++

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?