Description

Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bounds read in Geom2d_BSplineCurve::EvalD0 during IGES B-spline curve evaluation, an out-of-bounds read in MakeBSplineCurveCommon during STEP B-spline curve construction, and infinite recursion in StepShape_OrientedEdge::EdgeStart when processing a self-referential OrientedEdge entity. Successful exploitation may result in denial of service or unintended memory disclosure.

INFO

Published Date :

2026-05-01T00:00:00.000Z

Last Modified :

2026-05-01T18:30:42.756Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2026-42481 vulnerability.

Vendors Products
Opencascade
  • Open Cascade Technology
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-42481.

URL Resource
https://gist.github.com/sgInnora/dfba083d04906283e9c92aea78e2d94a cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact