Blender

Blender

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-2833

Exploit
  • EPSS 0.47%
  • Veröffentlicht 16.08.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:46

Endless Infinite loop in Blender-thumnailing due to logical bugs.

7.5

CVE-2022-2832

Exploit
  • EPSS 0.78%
  • Veröffentlicht 16.08.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:46

A flaw was found in Blender 3.3.0. A null pointer dereference exists in source/blender/gpu/opengl/gl_backend.cc that may lead to loss of confidentiality and integrity.

7.5

CVE-2022-2831

Exploit
  • EPSS 0.78%
  • Veröffentlicht 16.08.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:46

A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendthumb/src/blendthumb_extract.cc may lead to program crash or memory corruption.

7.8

CVE-2022-0546

  • EPSS 0.39%
  • Veröffentlicht 24.02.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:38:53

A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution.

7.8

CVE-2022-0545

  • EPSS 0.29%
  • Veröffentlicht 24.02.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:38:53

An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender pr...

5.5

CVE-2022-0544

  • EPSS 0.17%
  • Veröffentlicht 24.02.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:38:53

An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an attacker to read sensitive data using a crafted DDS image file. This flaw affects Blender versions prior to 2.83.19, 2.93.8 and 3.1.

7.8

CVE-2017-2907

Exploit
  • EPSS 1.06%
  • Veröffentlicht 24.04.2018 19:29:03
  • Zuletzt bearbeitet 21.11.2024 03:24:26

An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for...

7.8

CVE-2017-2901

Exploit
  • EPSS 1.06%
  • Veröffentlicht 24.04.2018 19:29:03
  • Zuletzt bearbeitet 21.11.2024 03:24:25

An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for cod...

7.8

CVE-2017-2902

Exploit
  • EPSS 1.06%
  • Veröffentlicht 24.04.2018 19:29:03
  • Zuletzt bearbeitet 21.11.2024 03:24:25

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code ...

7.8

CVE-2017-2903

Exploit
  • EPSS 3.78%
  • Veröffentlicht 24.04.2018 19:29:03
  • Zuletzt bearbeitet 21.11.2024 03:24:25

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code ...