Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAutodeskCVELIST:CVE-2022-25790
HistoryApr 11, 2022 - 7:37 p.m.

CVE-2022-25790

2022-04-1119:37:51
autodesk
www.cve.org

0.001 Low

EPSS

Percentile

32.8%

JSON

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.

CNA Affected

[
  {
    "product": "Autodesk Navisworks, Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "2022.1, 2022.1.1"
      }
    ]
  }
]

Related

nvd 1
zdi 9
cve 1
prion 1
nvd
nvd
CVE-2022-25790
2022-04-11 20:15:20
zdi
zdi
Autodesk Navisworks Freedom DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-04-05 00:00:00
Autodesk AutoCAD DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-03-07 00:00:00
Autodesk Navisworks Freedom DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-04-05 00:00:00
cve
cve
CVE-2022-25790
2022-04-11 20:15:20
prion
prion
Design/Logic Flaw
2022-04-11 20:15:00

0.001 Low

EPSS

Percentile

32.8%

JSON
Related for CVELIST:CVE-2022-25790
nvd1zdi9cve1prion1