Home > Vulnerability Database > CVE-2023-35953

Mend.io Vulnerability Database

CVE-2023-35953

Date: May 28, 2024

Multiple stack-based buffer overflow vulnerabilities exist in the readOFF.cpp functionality of libigl v2.4.0. A specially-crafted .off file can lead to a buffer overflow. An attacker can arbitrary code execution to trigger these vulnerabilities.This vulnerability exists within the code responsible for parsing comments within the geometric vertices section within an OFF file.

Language: C++

Severity Score

7.8

Related Resources (5)

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-35953

Url: https://security-tracker.debian.org/tracker/CVE-2023-35953

Url: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1784

Url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1784

Url: https://www.mend.io/vulnerability-database/CVE-2023-35953

Severity Score

7.8

Weakness Type (CWE)

Stack-based Buffer Overflow

CWE-121

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-35953

Date: May 28, 2024

Language: C++

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?