CVE-2024-8894

Vulnerability Description

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack (Crash, Exit, or Restart) or possible code execution.

Related Weaknesses (CWE)

CWE-787

References

https://www.opendesign.com/security-advisories

FAQ

What is CVE-2024-8894?

CVE-2024-8894 is a documented vulnerability. Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an...

How severe is CVE-2024-8894?

CVSS scoring is not yet available for CVE-2024-8894. Check NVD for updates.

Is there a patch for CVE-2024-8894?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.