Home

Description

An out-of-bounds write vulnerability exists in the MOL2 format attribute and value functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

PUBLISHED Reserved 2022-10-21 | Published 2023-07-21 | Updated 2024-10-24 | Assigner talos




HIGH: 8.1CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

Product status

3.1.1
affected

master commit 530dbfa3
affected

Credits

Discovered by Claudio Bozzato of Cisco Talos.

References

www.talosintelligence.com/...ability_reports/TALOS-2022-1664

talosintelligence.com/vulnerability_reports/TALOS-2022-1664

talosintelligence.com/vulnerability_reports/TALOS-2022-1664

cve.org (CVE-2022-43607)

nvd.nist.gov (CVE-2022-43607)

Download JSON