Eight vulnerabilities detected in the Drawings software development kit (SDK) created by Open Design Alliance (ODA) affects products from Siemens and possibly other vendors.
Brian Gorenc and Mat Powell of Trend Micro’s Zero Day Initiative (ZDI) found that ODA’s Drawings SDK, which is designed to give access to all data in .dgn and .dwg design files, is impacted by several vulnerabilities that can be misused by compelling the targeted user to open a specially designed file.
The vulnerabilities were uncovered by ZDI researchers in Siemens’ JT2Go 3D JT viewing tool, however additional investigation indicated that the problems were caused by the Drawings SDK.
To Read More: securityweek
Also Check : Introducing the TOUGHBOOK S1 Developed to deliver all the features you want, and all the rugged you need
