4 matches found
CVE-2023-25005
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL files could lead to a resource injection vulnerability...
CVE-2023-25005
CVE-2023-25005 affects Autodesk InfraWorks 2021–2023. A malicious DLL can cause reads beyond allocated boundaries when parsing DLLs, leading to a resource injection issue. Some sources describe use-after-free pathways that may enable code execution. Remediation is provided by Autodesk via securit...
CVE-2023-25005
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL files could lead to a resource injection vulnerability...
Autodesk Infraworks RCE (ADSK-SA-2023-0006)
Applications and services utilizing Autodesk InfraWorks have been affected by a use-after-free vulnerability. The exploitation of these vulnerabilities may lead to code execution. Hotfixes are available in the Autodesk Access or the Accounts Portal to help resolve these vulnerabilities. Note that...