{"id":"CVE-2026-42476","details":"Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 exist in RWStl_Reader::ReadAscii because buffers returned by Standard_ReadLineBuffer::ReadLine() are not properly length-validated before strncasecmp or direct byte access. User-assisted attackers can trigger these issues by persuading a victim to open a crafted STL file with extremely short lines, resulting in a denial of service or possible information disclosure.","modified":"2026-07-08T08:11:24.703529320Z","published":"2026-05-01T00:00:00Z","database_specific":{"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/42xxx/CVE-2026-42476.json"},"references":[{"type":"WEB","url":"https://gist.github.com/sgInnora/dfba083d04906283e9c92aea78e2d94a"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/42xxx/CVE-2026-42476.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-42476"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/open-cascade-sas/occt","events":[{"introduced":"0"},{"last_affected":"a016080bf6738d6aeae020badee4e888ad1540a5"},{"introduced":"344d6139b6d2a63849949442d1d12e684d3413b5"},{"last_affected":"0ebbbedb239d6fffb7e1c8c2d36970a3ab1d9300"}],"database_specific":{"source":["CPE_RANGE","CPE_STRING"],"extracted_events":[{"introduced":"0"},{"last_affected":"7.9.3"},{"introduced":"8.0.0-beta1"},{"last_affected":"8.0.0-beta1"},{"introduced":"8.0.0-rc1"},{"last_affected":"8.0.0-rc1"},{"introduced":"8.0.0-rc2"},{"last_affected":"8.0.0-rc2"},{"introduced":"8.0.0-rc3"},{"last_affected":"8.0.0-rc3"},{"introduced":"8.0.0-rc4"},{"last_affected":"8.0.0-rc4"},{"introduced":"8.0.0-rc5"},{"last_affected":"8.0.0-rc5"}],"cpe":["cpe:2.3:a:opencascade:open_cascade_technology:*:*:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:beta1:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:rc1:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:rc2:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:rc3:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:rc4:*:*:*:*:*:*","cpe:2.3:a:opencascade:open_cascade_technology:8.0.0:rc5:*:*:*:*:*:*"]}}],"versions":["8.0.0-beta1","8.0.0-rc1","8.0.0-rc2","8.0.0-rc3","8.0.0-rc4","8.0.0-rc5","V8_0_0_rc5","V8_0_0_rc4","V8_0_0_rc3","V7_9_3","V7_9_2","V7_9_1","V8_0_0_rc2","V7_9_0","V8_0_0_rc1","V7_9_0_beta2","V7_9_0_beta1","V7_8_0","V7_7_0","V7_7_0_beta","V7_6_0","V7_5_0","V7_5_0_beta","V7_4_0","V7_4_0_beta","V7_3_0","V7_3_0_beta","V7_2_0","V7_2_0_beta","V7_1_0","V7_0_0","V7_1_0_beta","V7_0_0rc","V7_0_0_beta","V6_9_0","V6_9_0_beta2","V6_9_0_beta1","V6_9_0_beta","V6_8_0","V6_8_0_beta","V6_7_0","V6_7_0_beta","V6_6_0","V6_6_0_beta","V6_5_4","V6_5_4_beta1","V6_5_3","V6_5_3_beta1","V6_5_2","V6_5_1","V6_5_0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-42476.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}