CVE-2026-42478

Name of the Vulnerable Software and Affected Versions Open CASCADE Technology (OCCT) version V8 0 0 rc5

Description A flaw in the VRML V2.0 parser allows attackers to cause a denial of service through a specially crafted VRML file. The issue occurs within the VrmlData IndexedFaceSet::TShape function in the libTKDEVRML.so library, where malformed input can trigger the dereference of a corrupt or unvalidated pointer during shape construction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.