Login Sign Up

CVE-2020-21813

7.8 HIGH
Remote Code Execution Denial of Service Buffer Overflow

📋 TL;DR

CVE-2020-21813 is a heap-based buffer overflow vulnerability in GNU LibreDWG's dwg2SVG converter. Attackers can exploit this by crafting malicious DWG files to execute arbitrary code or crash applications. Users and systems processing DWG files with vulnerable LibreDWG versions are affected.

💻 Affected Systems

Products:
  • GNU LibreDWG
Versions: 0.10.2641 and earlier versions
Operating Systems: Linux, Windows, macOS, Unix-like systems
Default Config Vulnerable: ⚠️ Yes
Notes: Any system using LibreDWG to convert DWG files to SVG format is vulnerable.

📦 What is this software?

Libredwg by Gnu

View all CVEs affecting Libredwg →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the LibreDWG process, potentially leading to full system compromise.

🟠

Likely Case

Application crash (denial of service) when processing malicious DWG files.

🟢

If Mitigated

Limited to denial of service if memory protections like ASLR are enabled and exploitation fails.

🌐 Internet-Facing: MEDIUM - Exploitation requires file upload/processing capabilities, not directly network-exposed.
🏢 Internal Only: MEDIUM - Internal users could exploit via malicious files in shared systems or workflows.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting a malicious DWG file; public proof-of-concept code exists in GitHub issue #182.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 0.10.2642 or later

Vendor Advisory: https://github.com/LibreDWG/libredwg/issues/182

Restart Required: No

Instructions:

1. Update LibreDWG to version 0.10.2642 or later. 2. On Linux: Use package manager (e.g., apt-get update && apt-get upgrade libredwg). 3. On Windows/macOS: Download and install the latest version from the official website.

🔧 Temporary Workarounds

Disable dwg2SVG processing

linux

Temporarily disable or restrict use of the dwg2SVG converter in LibreDWG.

# Remove or rename the dwg2SVG binary
sudo mv /usr/bin/dwg2SVG /usr/bin/dwg2SVG.disabled

Input validation for DWG files

all

Implement strict validation or sandboxing for DWG file processing.

🧯 If You Can't Patch

  • Restrict file uploads to trusted sources only for DWG files.
  • Use alternative DWG processing tools that are not vulnerable.

🔍 How to Verify

Check if Vulnerable:

Check LibreDWG version: dwgread --version or libredwg --version; if version is 0.10.2641 or earlier, it is vulnerable.

Check Version:

dwgread --version 2>/dev/null || libredwg --version 2>/dev/null || echo 'LibreDWG not found'

Verify Fix Applied:

After updating, verify version is 0.10.2642 or later using the same command.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes or segmentation faults in LibreDWG processes.
  • Unusual file processing errors related to DWG files.

Network Indicators:

  • Unusual uploads of DWG files to web applications or servers.

SIEM Query:

source="*libredwg*" AND (event_type="crash" OR error="segmentation fault")

📊 Metadata

CVE ID: CVE-2020-21813
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: May 17, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-21813, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)