CVE-2022-40201

Summary

Bentley Systems MicroStation Connect versions

10.17.0.209 and prior are vulnerable to a Stack-Based Buffer Overflow when a malformed design (DGN) file is parsed. This may allow an attacker to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
Bentley SystemsMicroStation Connect0 <= 10.17.0.209affected

Weaknesses

  • CWE-121: CWE-121 Stack-Based Buffer Overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References