CVE-2022-33033

HIGH

LibreDWG <0.12.4.4608 - Use After Free

Title source: llm

Description

LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at dwg.c.

References (1)

Scores

CVSS v3 7.8
EPSS 0.0017
EPSS Percentile 37.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-415
Status published

Affected Products (1)

gnu/libredwg

Timeline

Published Jun 23, 2022
Tracked Since Feb 18, 2026