CVE-2021-46585: 
Bentley MicroStation CONNECT vulnerability analysis and mitigation

CVE-2021-46585 is a stack-based buffer overflow vulnerability affecting Bentley MicroStation CONNECT software. The vulnerability was discovered by Mat Powell of Trend Micro Zero Day Initiative and was disclosed on January 31, 2022. The vulnerability has a CVSS score of 7.8 (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) (ZDI Advisory).

The vulnerability exists within the parsing of JT files in MicroStation CONNECT. The specific issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. This implementation flaw can lead to a stack-based buffer overflow condition (ZDI Advisory).

If successfully exploited, this vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. The attacker can leverage this vulnerability to execute code in the context of the current process, potentially leading to full system compromise (ZDI Advisory).

Bentley has issued an update to correct this vulnerability. Users are recommended to update to version 10.16.02.* or more recent versions of MicroStation and MicroStation-based applications. As a general best practice, it is also recommended to only open JT files coming from trusted sources (Bentley Advisory).