CVE-2023-27754

Name of the Vulnerable Software and Affected Versions vox2mesh version 1.0

Description The issue is caused by a stack-overflow in the main.cpp file due to the incorrect use of the memcpy() function. This allows an attacker to cause a denial of service (abort) via a crafted file.

Recommendations For vox2mesh version 1.0, consider disabling the use of the memcpy() function in the main.cpp file until a patch is available. As a temporary workaround, restrict the processing of crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.