CVE-2022-41613

Name of the Vulnerable Software and Affected Versions Bentley Systems MicroStation Connect versions 10.17.0.209 and prior

Description The issue is related to an Out-of-Bounds Read that occurs when parsing DGN files. This may allow an attacker to crash the product, disclose sensitive information, or execute arbitrary code.

Recommendations For versions 10.17.0.209 and prior, update to a version later than 10.17.0.209 to resolve the issue. As a temporary workaround, consider restricting the parsing of DGN files until a patch is available.