Lucene search
K

882 matches found

Cvelist
Cvelist
added 2022/04/18 4:20 p.m.29 views

CVE-2022-27529

A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the allocated buffer while parsing PICT, BMP, PSD or TIF file. This vulnerability may be exploited to execute arbitrary code...

8.1AI score0.00764EPSS
Exploits0References1
CVE
CVE
added 2022/04/18 4:20 p.m.81 views

CVE-2022-27529

CVE-2022-27529 affects Autodesk AutoCAD 2019–2022, where parsing malicious PICT/BMP/PSD/TIF files can write beyond allocated buffers, enabling arbitrary code execution. Root cause: buffer overrun during image format parsing. Public details confirm impact as arbitrary code execution; exploitation ...

7.8CVSS7.9AI score0.00764EPSS
Exploits0References1Affected Software10
CNNVD
CNNVD
added 2022/04/18 12:0 a.m.5 views

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from the US company Autodesk. A buffer error vulnerability exists in several versions of Autodesk AutoCAD, which stems from the application processing dwf files that may result in memory corruption due to a write access conflict. An...

7.8CVSS7.8AI score0.01644EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/18 12:0 a.m.5 views

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from the American company Autodesk. A security vulnerability exists in Autodesk AutoCAD 2022, 2021, 2020, 2019, which originates from a maliciously crafted PICT, BMP, PSD, or TIF file that can be used to write to a buffer beyond the...

7.8CVSS7.6AI score0.00764EPSS
Exploits0References2
NVD
NVD
added 2022/04/13 6:15 p.m.21 views

CVE-2022-25797

A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...

7.8CVSS0.01149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/13 6:15 p.m.3 views

CVE-2022-25797

A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...

7.8CVSS7.2AI score0.01149EPSS
Exploits0References2
Prion
Prion
added 2022/04/13 6:15 p.m.18 views

Code injection

A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...

6.8CVSS7.6AI score0.01149EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/13 12:0 a.m.26 views

CVE-2022-25797

A maliciously crafted PDF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to dereference for a write beyond the allocated buffer while parsing PDF files. The vulnerability exists because the application fails to handle a crafted PDF file, which causes an unhandled exception...

7.8AI score0.01149EPSS
Exploits0References1
CVE
CVE
added 2022/04/13 12:0 a.m.91 views

CVE-2022-25797

CVE-2022-25797 affects Autodesk AutoCAD 2019–2022 where a crafted PDF can trigger a buffer-overflow when parsing, due to improper handling that leads to an unhandled exception. The issue is tied to the PDF-parsing path in AutoCAD/TrueView, with confirmed impact described as a write beyond the all...

7.8CVSS7.6AI score0.01149EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/04/11 8:15 p.m.3 views

CVE-2022-25789

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

7.8CVSS5.8AI score0.01538EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.3 views

CVE-2022-25789

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

7.8CVSS7.1AI score0.01538EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.2 views

CVE-2022-25792

A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS7.5AI score0.01462EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.4 views

CVE-2022-25790

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution...

7.8CVSS7.1AI score0.01463EPSS
Exploits0References2
NVD
NVD
added 2022/04/11 8:15 p.m.38 views

CVE-2022-25789

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

7.8CVSS0.01538EPSS
Exploits0References1
OSV
OSV
added 2022/04/11 8:15 p.m.3 views

CVE-2022-25792

A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS6.2AI score0.01462EPSS
Exploits0References1
Prion
Prion
added 2022/04/11 8:15 p.m.19 views

Design/Logic Flaw

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

6.8CVSS7.7AI score0.01538EPSS
Exploits0References1Affected Software10
CVE
CVE
added 2022/04/11 7:37 p.m.108 views

CVE-2022-25792

CVE-2022-25792 is a buffer overflow in DXF file parsing affecting Autodesk AutoCAD (2022, 2021, 2020, 2019) and Autodesk Navisworks 2022. The issue arises from writing beyond an allocated buffer when processing a malicious DXF file, allowing arbitrary code execution. Connected documents corrobora...

7.8CVSS8AI score0.01462EPSS
Exploits0References1Affected Software11
CVE
CVE
added 2022/04/11 7:37 p.m.101 views

CVE-2022-25790

CVE-2022-25790 describes a vulnerability in Autodesk products (Autodesk AutoCAD 2022/2021/2020/2019 and Autodesk Navisworks 2022) where parsing of DWF files can write beyond allocated boundaries, potentially enabling code execution. Connected sources (ZDI advisories) corroborate an out-of-bounds ...

7.8CVSS7.6AI score0.01463EPSS
Exploits0References1Affected Software11
CVE
CVE
added 2022/04/11 7:37 p.m.102 views

CVE-2022-25789

Autodesk AutoCAD is affected by a use-after-free vulnerability triggered by parsing certain file formats (DWF, DWFX, 3DS) in several versions (2022, 2021, 2020, 2019). The issue stems from unsafe handling in the file-parsing code, allowing potential remote code execution. Several connected adviso...

7.8CVSS7.7AI score0.01538EPSS
Exploits0References1Affected Software10
Cvelist
Cvelist
added 2022/04/11 7:37 p.m.40 views

CVE-2022-25789

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

8AI score0.01538EPSS
Exploits0References1
Rows per page
Query Builder