This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

MicroStation and MicroStation based application Security Update.

MicroStation and MicroStation based application Security Update

Please login into Bentley Communities with your Bentley Account in order to activate the download button for this Security Update.

The update resolves an Improper Input Validation vulnerability (CWE-20) where a DGN file could crafted to introduce data that is not expected by the application causing unpredictable or unwanted behavior at application startup. Bentley has not observed this vulnerability being actively exploited for malicious purposes but as it is theoretically possible to do so, Bentley strongly recommends treating this as a material update and deploying with priority to sensitive environments.  This update is applicable to MicroStation and MicroStation based applications V8i and Connect Edition.  This change applies to an obsolete feature not generally used by modern MicroStation users.