Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Ashlar-Vellum — Vulnerabilities & Security Advisories 101

Browse all 101 CVE security advisories affecting Ashlar-Vellum. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ashlar-Vellum provides computer-aided design and drafting software primarily serving the masonry and stone industry. The platform’s extensive history has resulted in a significant vulnerability footprint, with 101 Common Vulnerabilities and Exposures currently recorded. These security flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation, often stemming from inadequate input validation and improper access controls within the application’s architecture. While specific major incidents involving widespread exploitation remain largely undocumented in public threat intelligence feeds, the high volume of CVEs indicates systemic weaknesses in the software’s security lifecycle. Users are advised to maintain strict patch management protocols, as the legacy nature of the codebase presents persistent risks for unauthorized access and data compromise. Continuous monitoring and immediate application of vendor-provided security updates are essential to mitigate these known technical deficiencies and protect organizational infrastructure from potential exploitation.

Top products by Ashlar-Vellum: Cobalt Graphite Xenon Argon Lithium
CVE IDTitleCVSSSeverityPublished
CVE-2025-7979 Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — GraphiteCWE-121 7.8AIHighAI2025-09-17
CVE-2025-7978 Ashlar-Vellum Graphite VC6 File Parsing Uninitialized Variable Remote Code Execution Vulnerability — GraphiteCWE-457 7.8AIHighAI2025-09-17
CVE-2025-7980 Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — GraphiteCWE-787 7.8AIHighAI2025-09-17
CVE-2025-7982 Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability — CobaltCWE-190 7.8AIHighAI2025-09-17
CVE-2025-7977 Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — CobaltCWE-125 7.8AIHighAI2025-09-17
CVE-2025-46269 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share Heap-based Buffer Overflow — CobaltCWE-122 7.8 High2025-08-18
CVE-2025-52584 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share Heap-based Buffer Overflow — CobaltCWE-122 7.8 High2025-08-18
CVE-2025-41392 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share Out-of-bounds Read — CobaltCWE-125 7.8 High2025-08-18
CVE-2025-53705 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share Out-of-bounds Write — CobaltCWE-787 7.8 High2025-08-18
CVE-2025-2023 Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability — CobaltCWE-190 7.8 -2025-03-11
CVE-2025-2022 Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2025-03-11
CVE-2025-2021 Ashlar-Vellum Cobalt XE File Parsing Integer Overflow Remote Code Execution Vulnerability — CobaltCWE-190 7.8 -2025-03-11
CVE-2025-2020 Ashlar-Vellum Cobalt VC6 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — CobaltCWE-787 7.8 -2025-03-11
CVE-2025-2019 Ashlar-Vellum Cobalt VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — CobaltCWE-122 7.8 -2025-03-11
CVE-2025-2018 Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2025-03-11
CVE-2025-2017 Ashlar-Vellum Cobalt CO File Parsing Buffer Overflow Remote Code Execution Vulnerability — CobaltCWE-120 7.8 -2025-03-11
CVE-2025-2016 Ashlar-Vellum Cobalt VC6 File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2025-03-11
CVE-2025-2015 Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2025-03-11
CVE-2025-2014 Ashlar-Vellum Cobalt VS File Parsing Use of Uninitialized Variable Remote Code Execution Vulnerability — CobaltCWE-457 7.8 -2025-03-11
CVE-2025-2013 Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Remote Code Execution Vulnerability — CobaltCWE-416 7.8 -2025-03-11
CVE-2025-2012 Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — CobaltCWE-125 7.8 -2025-03-11
CVE-2023-39943 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium Out-of-bounds Write — CobaltCWE-787 7.8 High2025-02-04
CVE-2023-40222 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium Heap-based Buffer Overflow — CobaltCWE-122 7.8 High2025-02-04
CVE-2024-13051 Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GraphiteCWE-122 7.8 -2024-12-30
CVE-2024-13050 Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GraphiteCWE-122 7.8 -2024-12-30
CVE-2024-13049 Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2024-12-30
CVE-2024-13048 Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — CobaltCWE-787 7.8 -2024-12-30
CVE-2024-13047 Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability — CobaltCWE-843 7.8 -2024-12-30
CVE-2024-13046 Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — CobaltCWE-787 7.8 -2024-12-30
CVE-2024-13045 Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — CobaltCWE-121 7.8 -2024-12-30

This page lists every published CVE security advisory associated with Ashlar-Vellum. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.