Vulnerability Details CVE-2022-42899
Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read and stack overflow issues when opening crafted SKP files. Exploiting these issues could lead to information disclosure and code execution. The fixed versions are 10.17.01.58* for MicroStation and 10.17.01.19* for Bentley View.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.3%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2022-42899
-
cpe:2.3:a:bentley:microstation:10.16.02
-
cpe:2.3:a:bentley:microstation:7.1
-
cpe:2.3:a:bentley:view:10.16.02