CNNVD-202509-2657 Information

CNNVD ID

CNNVD-202509-2657

Related CVE

CVE-2025-7981

• CNNVD Published: 2025-09-17

Description (Chinese)

Ashlar-Vellum Graphite是Ashlar-Vellum公司的一款 CAD 建模软件。 Ashlar-Vellum Graphite存在安全漏洞，该漏洞源于解析VC6文件时未正确初始化内存，可能导致远程代码执行。

Description (English)

Ashlar-Vellum Graham is a CAD modeling software for Ashlar-Vellum. There is a security loophole in Ashlar-Vellam Graphice, which results from an incorrect initialization of the memory when the VC6 file is deciphered and may lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Ashlar-Vellum

Published

2025-09-17

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-634/