CVE-2022-43467

Name of the Vulnerable Software and Affected Versions Open Babel versions 3.1.1 and earlier

Description The issue is related to an out-of-bounds write vulnerability in the PQS format coord file functionality. This can be exploited by providing a specially crafted malformed file, potentially leading to arbitrary code execution. An attacker can trigger this vulnerability by providing a malicious file.

Recommendations For Open Babel version 3.1.1, consider avoiding the use of the PQS format coord file functionality until a patch is available. As a temporary workaround, restrict the handling of malformed files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.