Ashlar Security Vulnerabilities (CVEs)

Track 48 security vulnerabilities affecting Ashlar products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

2 Critical

46 High

Sort by:

🔔 Get Alerts for Ashlar

CVE-2025-65084 9.8

An Out-of-Bounds Write vulnerability in Ashlar-Vellum CAD software allows attackers to execute arbitrary code or disclose sensitive information by sen...

Nov 25, 2025

CVE-2025-65085 9.8

A heap-based buffer overflow vulnerability in Ashlar-Vellum CAD software allows attackers to read sensitive memory or execute arbitrary code by sendin...

Nov 25, 2025

CVE-2025-11463 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious XE...

Oct 29, 2025

CVE-2025-11465 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious CO...

Oct 29, 2025

CVE-2025-7981 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Graphite soft...

Sep 17, 2025

CVE-2025-7983 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Graphite. Att...

Sep 17, 2025

CVE-2025-7977 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious LI files or visiting malicious web pages...

Sep 17, 2025

CVE-2025-7979 7.8

A stack-based buffer overflow vulnerability in Ashlar-Vellum Graphite's VC6 file parser allows remote attackers to execute arbitrary code when users o...

Sep 17, 2025

CVE-2025-46269 7.8

A heap-based buffer overflow vulnerability in Ashlar-Vellum CAD software allows attackers to execute arbitrary code by crafting malicious VC6 files. T...

Aug 18, 2025

CVE-2025-41392 7.8

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing AR files in Ashlar-Vellum CAD software....

Aug 18, 2025

CVE-2025-2017 7.8

A buffer overflow vulnerability in Ashlar-Vellum Cobalt's CO file parser allows remote attackers to execute arbitrary code when users open malicious f...

Mar 11, 2025

CVE-2025-2018 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious VS...

Mar 11, 2025

CVE-2025-2019 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Cobalt softwa...

Mar 11, 2025

CVE-2025-2020 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Cobalt softwa...

Mar 11, 2025

CVE-2025-2021 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by exploiting an integer overflow in XE fil...

Mar 11, 2025

CVE-2025-2022 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious VS...

Mar 11, 2025

CVE-2025-2023 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious LI files in Ashlar-Vellum Cobalt softwar...

Mar 11, 2025

CVE-2025-2012 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VS files in Ashlar-Vellum Cobalt softwar...

Mar 11, 2025

CVE-2025-2013 7.8

This is a use-after-free vulnerability in Ashlar-Vellum Cobalt's CO file parser that allows remote attackers to execute arbitrary code. Attackers can ...

Mar 11, 2025

CVE-2025-2014 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious VS...

Mar 11, 2025

CVE-2025-2015 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VS files in Ashlar-Vellum Cobalt softwar...

Mar 11, 2025

CVE-2025-2016 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious VC...

Mar 11, 2025

CVE-2023-39943 7.8

This vulnerability in Ashlar-Vellum Cobalt allows attackers to execute arbitrary code by exploiting improper validation when parsing XE files. It affe...

Feb 4, 2025

CVE-2024-13047 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious CO files or visiting malicious web pages...

Dec 30, 2024

CVE-2024-13049 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious XE...

Dec 30, 2024

CVE-2024-13051 7.8

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Graphite. Att...

Dec 30, 2024

CVE-2024-13045 7.8

A stack-based buffer overflow vulnerability in Ashlar-Vellum Cobalt's AR file parser allows remote attackers to execute arbitrary code when a user ope...

Dec 30, 2024

CVE-2023-44437 7.8

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious fi...

Ashlar Security Vulnerabilities (CVEs)

Why Monitor Ashlar Security Vulnerabilities?

🚀 Get Started in 60 Seconds