CVE-2022-46295

Name of the Vulnerable Software and Affected Versions Open Babel versions 3.1.1 and prior

Description The issue is related to out-of-bounds write vulnerabilities in the translationVectors parsing functionality of Open Babel, affecting multiple supported file formats, including the Gaussian file format. This can be exploited by a remote attacker using a specially crafted malformed file, potentially leading to arbitrary code execution.

Recommendations For Open Babel version 3.1.1, consider disabling the translationVectors functionality until a patch is available. Restrict access to files that could trigger this vulnerability to minimize the risk of exploitation. Avoid using the Gaussian file format in Open Babel until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.