Shodan
Vulnerabilities
Vulnerable Software
Fig2dev Project:  >> Fig2dev  Security Vulnerabilities
CVE-2025-46399
A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-04-23
CVE-2025-46400
In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via read_arcobject function.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-04-23
CVE-2025-46397
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation at the bezier_spline function.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-04-23
CVE-2025-46398
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects function.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-04-23
CVE-2025-31162
Floating point exception in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via get_slope function.
CVSS Score
6.6
EPSS Score
0.0
Published
2025-03-28
CVE-2025-31163
Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via put_patternarc function.
CVSS Score
6.6
EPSS Score
0.0
Published
2025-03-28
CVE-2025-31164
heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via  create_line_with_spline.
CVSS Score
6.6
EPSS Score
0.0
Published
2025-03-28
CVE-2021-37529
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-12
CVE-2021-37530
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-01-12
CVE-2020-21675
A stack-based buffer overflow in the genptk_text component in genptk.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ptk format.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-08-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved