Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAutodeskCVELIST:CVE-2024-37006
HistoryJun 25, 2024 - 3:15 a.m.

CVE-2024-37006

2024-06-2503:15:46
CWE-119
autodesk
www.cve.org
5
catproduct
autodesk
memory corruption
vulnerability
code execution

0.001 Low

EPSS

Percentile

48.6%

JSON

A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

CNA Affected

[
  {
    "defaultStatus": "unknown",
    "product": "AutoCAD, Advance Steel and Civil 3D",
    "vendor": "Autodesk",
    "versions": [
      {
        "status": "affected",
        "version": "2024"
      }
    ]
  }
]

Related

vulnrichment 1
nvd 1
zdi 1
cve 1
vulnrichment
vulnrichment
CVE-2024-37006
2024-06-25 03:15:46
nvd
nvd
CVE-2024-37006
2024-06-25 04:15:16
zdi
zdi
(0Day) Autodesk AutoCAD CATPRODUCT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
2024-06-13 00:00:00
cve
cve
CVE-2024-37006
2024-06-25 04:15:16

0.001 Low

EPSS

Percentile

48.6%

JSON
Related for CVELIST:CVE-2024-37006
vulnrichment1nvd1zdi1cve1