CVE-2026-42477

Published: May 1, 2026Modified: May 10, 2026

7.1

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Exploitability: 1.8 / Impact: 5.2

Source: NVD

Description

A heap-based out-of-bounds read vulnerability in RWObj_Reader::read in the OBJ file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows user-assisted attackers to cause a denial of service or obtain sensitive information by persuading a victim to open a crafted OBJ file. The issue occurs because Standard_ReadLineBuffer::ReadLine() can return a 1-byte buffer for a minimal OBJ line, and RWObj_Reader::read() calls pushIndices(aLine + 2) without validating the buffer length.

Affected (7)

Products: Opencascade: Open Cascade Technology

Opencascade

1 product

Open Cascade Technology

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Opencascade Open Cascade Technology	Up to 7.9.3
Opencascade Open Cascade Technology	Version 8.0.0 beta1
Opencascade Open Cascade Technology	Version 8.0.0 rc1
Opencascade Open Cascade Technology	Version 8.0.0 rc2
Opencascade Open Cascade Technology	Version 8.0.0 rc3
Opencascade Open Cascade Technology	Version 8.0.0 rc4
Opencascade Open Cascade Technology	Version 8.0.0 rc5

Related CWEs

CWE-122

Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (1)

https://gist.github.com/sgInnora/dfba083d04906283e9c92aea78e2d94a

Source: cve@mitre.org

Third Party Advisory

Timeline

No history available yet.