CVE-2026-42477
EUVD-2026-2660001.05.2026, 15:16
A heap-based out-of-bounds read vulnerability in RWObj_Reader::read in the OBJ file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows user-assisted attackers to cause a denial of service or obtain sensitive information by persuading a victim to open a crafted OBJ file. The issue occurs because Standard_ReadLineBuffer::ReadLine() can return a 1-byte buffer for a minimal OBJ line, and RWObj_Reader::read() calls pushIndices(aLine + 2) without validating the buffer length.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| opencascade | open_cascade_technology | 𝑥 ≤ 7.9.3 |
| opencascade | open_cascade_technology | 8.0.0:beta1 |
| opencascade | open_cascade_technology | 8.0.0:rc1 |
| opencascade | open_cascade_technology | 8.0.0:rc2 |
| opencascade | open_cascade_technology | 8.0.0:rc3 |
| opencascade | open_cascade_technology | 8.0.0:rc4 |
| opencascade | open_cascade_technology | 8.0.0:rc5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-125 - Out-of-bounds ReadThe software reads data past the end, or before the beginning, of the intended buffer.
- CWE-122 - Heap-based Buffer OverflowA heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().