CVE-2022-28647: 
Bentley MicroStation CONNECT vulnerability analysis and mitigation

This vulnerability (CVE-2022-28647) affects Bentley MicroStation CONNECT 10.16.2.034 and allows remote attackers to execute arbitrary code. The vulnerability requires user interaction, specifically opening a malicious file or visiting a malicious page. The issue exists within the parsing of IFC files, where crafted data can trigger a read past the end of an allocated buffer (Zero Day Initiative, Vendor Advisory).

The vulnerability is related to a buffer overflow condition during IFC file parsing. When parsing IFC files, crafted data can trigger a read past the end of an allocated buffer. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating local access, low attack complexity, no privileges required, and user interaction required (Zero Day Initiative).

A successful exploitation of this vulnerability allows attackers to execute code in the context of the current process. The high CVSS score reflects the potential for complete compromise of confidentiality, integrity, and availability of the affected system, though the attack requires user interaction (Zero Day Initiative).

Bentley has issued an update to address this vulnerability. Users should upgrade to MicroStation CONNECT version 10.16.03 or later. As a general best practice, it is recommended to only open IFC files from trusted sources (Vendor Advisory).