Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bentley — Vulnerabilities & Security Advisories 209

Browse all 209 CVE security advisories affecting Bentley. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Bentley Systems provides computer-aided design (CAD) and engineering software primarily used for infrastructure projects such as bridges, roads, and buildings. With 209 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically suffered from critical flaws including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These weaknesses often stem from improper input validation and insufficient access controls within its desktop and server components. Notable incidents include arbitrary file read and write capabilities that allow attackers to compromise system integrity or execute malicious code remotely. The software’s complex architecture, involving numerous plugins and integrations, frequently introduces attack surfaces that remain unpatched for extended periods. Security researchers emphasize that default configurations often lack robust authentication mechanisms, leaving enterprise deployments exposed to unauthorized access and data exfiltration without immediate remediation.

Top products by Bentley: View MicroStation CONNECT ContextCapture MicroStation ProjectWise Integration Server
CVE IDTitleCVSSSeverityPublished
CVE-2024-53007 Bentley Systems ProjectWise Integration Server 安全漏洞 — ProjectWise Integration ServerCWE-648 6.4 Medium2025-01-31
CVE-2022-43656 Bentley View FBX File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — ViewCWE-125 3.3AILowAI2024-05-07
CVE-2022-43655 Bentley View FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — ViewCWE-122 7.8AIHighAI2024-05-07
CVE-2022-43653 Bentley View SKP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — ViewCWE-787 7.8AIHighAI2024-05-07
CVE-2022-43652 Bentley View SKP File Parsing Use-After-Free Information Disclosure Vulnerability — ViewCWE-416 3.3AILowAI2024-05-07
CVE-2022-43651 Bentley View SKP File Parsing Use-After-Free Remote Code Execution Vulnerability — ViewCWE-416 7.8AIHighAI2024-05-07
CVE-2023-44430 Bentley View SKP File Parsing Use-After-Free Remote Code Execution Vulnerability — ViewCWE-416 7.8 -2024-05-03
CVE-2022-28309 Bentley View 缓冲区错误漏洞 — ViewCWE-125 5.5 -2023-03-29
CVE-2022-28300 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStationCWE-787 7.8 -2023-03-29
CVE-2022-28301 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29
CVE-2022-28302 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 7.8 -2023-03-29
CVE-2022-28303 Bentley Systems Bentley View 资源管理错误漏洞 — ViewCWE-416 7.8 -2023-03-29
CVE-2022-28304 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-121 7.8 -2023-03-29
CVE-2022-28305 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-121 7.8 -2023-03-29
CVE-2022-28306 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-121 7.8 -2023-03-29
CVE-2022-28307 Bentley View 缓冲区错误漏洞 — ViewCWE-125 7.8 -2023-03-29
CVE-2022-28308 Bentley View 缓冲区错误漏洞 — ViewCWE-125 5.5 -2023-03-29
CVE-2022-28310 Bentley Systems MicroStation 资源管理错误漏洞 — MicroStation CONNECTCWE-416 7.8 -2023-03-29
CVE-2022-28311 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 7.8 -2023-03-29
CVE-2022-28312 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 5.5 -2023-03-29
CVE-2022-28313 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 5.5 -2023-03-29
CVE-2022-28320 Bentley Systems Bentley View 安全漏洞 — ViewCWE-457 7.8 -2023-03-29
CVE-2022-28647 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 7.8 -2023-03-29
CVE-2022-28646 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29
CVE-2022-28645 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-125 5.5 -2023-03-29
CVE-2022-28644 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29
CVE-2022-28643 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29
CVE-2022-28642 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29
CVE-2022-28641 Bentley Systems MicroStation 资源管理错误漏洞 — MicroStation CONNECTCWE-416 7.8 -2023-03-29
CVE-2022-28316 Bentley Systems MicroStation 缓冲区错误漏洞 — MicroStation CONNECTCWE-787 7.8 -2023-03-29

This page lists every published CVE security advisory associated with Bentley. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.