Heap overflow

2024-02-2203:15:00

PRIOn knowledge base

www.prio-n.com

maliciously crafted file

heap-based overflow

autodesk autocad

vulnerability

sensitive data

arbitrary code

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

16.0%

JSON

A maliciously crafted MODEL, SLDPRT or SLDASM file when parsed VCRUNTIME140.dll through Autodesk AutoCAD can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

References

www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002