A use of uninitialized pointer vulnerability exists in the MSI format atom functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

Project Subscriptions

Vendors Products
Openbabel Subscribe
Open Babel Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2022-47394 A use of uninitialized pointer vulnerability exists in the MSI format atom functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Github GHSA Github GHSA GHSA-jr2x-6qf6-q5mc Open Babel has uninitialized pointer dereference in MSI atom parser
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 05 Mar 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 22 Nov 2024 12:00:00 +0000


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published:

Updated: 2025-03-05T18:48:22.079Z

Reserved: 2022-11-28T20:45:28.765Z

Link: CVE-2022-44451

cve-icon Vulnrichment

Updated: 2024-08-03T13:54:03.506Z

cve-icon NVD

Status : Modified

Published: 2023-07-21T21:15:10.577

Modified: 2026-06-17T05:08:23.520

Link: CVE-2022-44451

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses