CVE-2023-0973

Name of the Vulnerable Software and Affected Versions STEPTools v18SP1 ifcmesh library version 18.1

Description The issue is related to a null pointer dereference in the ifcmesh library, which could allow an attacker to deny application usage when reading a specially constructed file, resulting in an application crash. This could potentially be exploited to cause a denial of service.

Recommendations For STEPTools v18SP1 ifcmesh library version 18.1, consider disabling the library until a patch is available to prevent potential exploitation. As a temporary workaround, avoid using the library to parse specially constructed files that could trigger the null pointer dereference. At the moment, there is no information about a newer version that contains a fix for this vulnerability.