cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-34985,https://securityvulnerability.io/vulnerability/CVE-2021-34985,Information Disclosure Vulnerability in Bentley ContextCapture Software,"This vulnerability in Bentley ContextCapture allows remote attackers to disclose sensitive information by manipulating the parsing of OBJ files. User interaction is necessary as the target must visit a malicious webpage or open a compromised file. The flaw occurs due to insufficient validation of user-supplied data, potentially leading to a read past the end of an allocated buffer. This weakness can be exploited alongside other vulnerabilities to execute arbitrary code within the context of the current process.",Bentley,Contextcapture,3.3,LOW,0.0018700000364333391,false,,false,false,false,,,false,false,,2022-01-13T21:44:41.000Z,0
CVE-2021-34984,https://securityvulnerability.io/vulnerability/CVE-2021-34984,Remote Information Disclosure in Bentley ContextCapture,"This vulnerability enables remote attackers to potentially disclose sensitive information from installations of Bentley ContextCapture, specifically version 10.18.0.232. The flaw arises during the parsing of OBJ files due to inadequate validation of user-supplied data. To exploit this vulnerability, an attacker needs the target user to visit a malicious webpage or open a compromised file. The consequence is a read past the end of an allocated buffer, which could allow an attacker to exploit other vulnerabilities, potentially leading to arbitrary code execution in the context of the current process.",Bentley,Contextcapture,3.3,LOW,0.0018700000364333391,false,,false,false,false,,,false,false,,2022-01-13T21:44:39.000Z,0