CVE-2022-27523

2022-04-1317:06:09

autodesk

www.cve.org

autodesk trueview

buffer over-read

code execution

dwg file

vulnerability

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

26.4%

JSON

A buffer over-read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

CNA Affected

[
  {
    "product": "Autodesk Trueview",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "2022.1.1"
      }
    ]
  }
]

References

www.autodesk.com/trust/security-advisories/adsk-sa-2022-0007