CVE-2010-20114 – VariCAD EN Stack-Based Buffer Overflow

CVE ID : CVE-2010-20114

Published : Aug. 21, 2025, 9:15 p.m. | 1 hour, 8 minutes ago

Description : VariCAD EN up to and including version 2010-2.05 is vulnerable to a stack-based buffer overflow when parsing .dwb drawing files. The application fails to properly validate the length of input data embedded in the file, allowing a crafted .dwb file to overwrite critical memory structures. This flaw can be exploited locally by convincing a user to open a malicious file, resulting in arbitrary code execution.

Severity: 8.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…