CVE-2024-8894 Information

Description

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash potentially enabling a denial-of-service attack (Crash Exit or Restart) or possible code execution.

Reference

https://www.opendesign.com/security-advisories