21 matches found
CVE-2021-27043
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...
EUVD-2021-13814
Malware in sbrugna...
EUVD-2022-36926
Malicious code in bioql PyPI...
CVE-2022-33888
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138 Stack-based Overflow Vulnerability in the TrueViewTM Desktop Software
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
PT-2024-19688 · Autodesk · Autodesk Dwg Trueview
Name of the Vulnerable Software and Affected Versions: Autodesk DWG TrueView affected versions not specified Description: A maliciously crafted DWG file can cause a Stack-based Overflow when parsed through Autodesk DWG TrueView. This can be leveraged by a malicious actor to cause a crash, read...
Autodesk DWG TrueView 2023 < 2023.1.1 RCE
The remote host has an install of Autodesk DWG TrueView version 2023 prior to 2023.1.1. It is, therefore, affected by a remote code execution vulnerability due to DLL search order hijacking. Note that Nessus has not tested for this issue but has instead relied only on the application's...
CVE-2022-33888
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2022-33888
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2022-33888
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2022-33888
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2022-33888
CVE-2022-33888 affects Autodesk DWG processing of Dwg2Spd files. The vulnerability is described as a memory corruption issue caused by a write access violation during processing of a maliciously crafted Dwg2Spd file, which could lead to code execution in the context of the current process (local,...
PT-2022-21889 · Autodesk · Autodesk Dwg
Name of the Vulnerable Software and Affected Versions: Autodesk DWG affected versions not specified Description: A maliciously crafted Dwg2Spd file, when processed through the Autodesk DWG application, could lead to a memory corruption issue due to a write access violation. This issue, in...
CVE-2021-27043
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...
Design/Logic Flaw
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...
CVE-2021-27043
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...
Autodesk DWG TrueView Detection
Binary data autodeskdwgtrueviewinstalled.nbin...
Autodesk DWG TrueView Buffer Overflow
The remote host has an install of Autodesk DWG TrueView version 2011, 2012, 2013 or 2014, and thus is affected by an error related to the handling of DWG files. The error exists due to a failure to properly bounds-check data in DWG files before using it to index and copy heap memory values. An...