Null Pointer Dereference in Blender 3.3.0 by Blender Foundation
CVE-2022-2832

7.5HIGH

Key Information:

Vendor

Blender

Status
Vendor
CVE Published:
16 August 2022

What is CVE-2022-2832?

A vulnerability has been identified in Blender version 3.3.0, where a null pointer dereference in the OpenGL backend can occur. This flaw may allow an attacker to potentially disrupt the application, leading to unintended behavior that compromises data integrity and confidentiality. The affected code can introduce instability, affecting users' ability to securely work with their projects.

Affected Version(s)

Blender Blender 3.3.0

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.