882 matches found
CVE-2022-27529
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the allocated buffer while parsing PICT, BMP, PSD or TIF file. This vulnerability may be exploited to execute arbitrary code...
CVE-2022-27529
CVE-2022-27529 affects Autodesk AutoCAD 2019–2022, where parsing malicious PICT/BMP/PSD/TIF files can write beyond allocated buffers, enabling arbitrary code execution. Root cause: buffer overrun during image format parsing. Public details confirm impact as arbitrary code execution; exploitation ...
Autodesk AutoCAD 缓冲区错误漏洞
Autodesk AutoCAD is a suite of professional 3D drawing software from the US company Autodesk. A buffer error vulnerability exists in several versions of Autodesk AutoCAD, which stems from the application processing dwf files that may result in memory corruption due to a write access conflict. An...
Autodesk AutoCAD 缓冲区错误漏洞
Autodesk AutoCAD is a suite of professional 3D drawing software from the American company Autodesk. A security vulnerability exists in Autodesk AutoCAD 2022, 2021, 2020, 2019, which originates from a maliciously crafted PICT, BMP, PSD, or TIF file that can be used to write to a buffer beyond the...
CVE-2022-25797
A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...
CVE-2022-25797
A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...
Code injection
A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...
CVE-2022-25797
A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...
CVE-2022-25797
CVE-2022-25797 affects Autodesk AutoCAD 2019–2022 where a crafted PDF can trigger a buffer-overflow when parsing, due to improper handling that leads to an unhandled exception. The issue is tied to the PDF-parsing path in AutoCAD/TrueView, with confirmed impact described as a write beyond the all...
CVE-2022-25789
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...
CVE-2022-25789
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...
CVE-2022-25792
A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability can be exploited to execute arbitrary code...
CVE-2022-25790
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution...
CVE-2022-25789
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...
CVE-2022-25792
A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability can be exploited to execute arbitrary code...
Design/Logic Flaw
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...
CVE-2022-25792
CVE-2022-25792 is a buffer overflow in DXF file parsing affecting Autodesk AutoCAD (2022, 2021, 2020, 2019) and Autodesk Navisworks 2022. The issue arises from writing beyond an allocated buffer when processing a malicious DXF file, allowing arbitrary code execution. Connected documents corrobora...
CVE-2022-25790
CVE-2022-25790 describes a vulnerability in Autodesk products (Autodesk AutoCAD 2022/2021/2020/2019 and Autodesk Navisworks 2022) where parsing of DWF files can write beyond allocated boundaries, potentially enabling code execution. Connected sources (ZDI advisories) corroborate an out-of-bounds ...
CVE-2022-25789
Autodesk AutoCAD is affected by a use-after-free vulnerability triggered by parsing certain file formats (DWF, DWFX, 3DS) in several versions (2022, 2021, 2020, 2019). The issue stems from unsafe handling in the file-parsing code, allowing potential remote code execution. Several connected adviso...
CVE-2022-25789
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...