17 matches found
EUVD-2013-3598
Malware in sbrugna...
EUVD-2022-46001
Malicious code in bioql PyPI...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
Autodesk DWG TrueView 25.0.x < 25.0.101.0 (2025.1) (adsk-sa-2024-0014)
The version of Autodesk DWG TrueView installed on the remote host is prior to 25.0.101.0 2025.1. It is, therefore, affected by a vulnerability as referenced in the adsk-sa-2024-0014 advisory. - A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, can force an...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138 Stack-based Overflow Vulnerability in the TrueViewTM Desktop Software
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
PT-2024-19688 · Autodesk · Autodesk Dwg Trueview
Name of the Vulnerable Software and Affected Versions: Autodesk DWG TrueView affected versions not specified Description: A maliciously crafted DWG file can cause a Stack-based Overflow when parsed through Autodesk DWG TrueView. This can be leveraged by a malicious actor to cause a crash, read...
Autodesk DWG TrueView 2023 < 2023.1.1 RCE
The remote host has an install of Autodesk DWG TrueView version 2023 prior to 2023.1.1. It is, therefore, affected by a remote code execution vulnerability due to DLL search order hijacking. Note that Nessus has not tested for this issue but has instead relied only on the application's...
CVE-2022-42945
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system...
CVE-2022-42945
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system...
CVE-2022-42945
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system...
CVE-2022-42945
DWG TrueView 2023 contains a DLL search order hijacking vulnerability leading to remote code execution (CVE-2022-42945). Root cause: DLL search order manipulation. Affected product: Autodesk DWG TrueView 2023. Evidence from multiple sources confirms the issue; exploitation is described as remote ...
CVE-2022-42945
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system...
PT-2022-26672 · Autodesk · Dwg Trueview
Name of the Vulnerable Software and Affected Versions: DWG TrueViewTM version 2023 Description: The issue is related to a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system. Recommendations: For DWG...
Autodesk DWG TrueView Detection
Binary data autodeskdwgtrueviewinstalled.nbin...
Autodesk DWG TrueView Buffer Overflow
The remote host has an install of Autodesk DWG TrueView version 2011, 2012, 2013 or 2014, and thus is affected by an error related to the handling of DWG files. The error exists due to a failure to properly bounds-check data in DWG files before using it to index and copy heap memory values. An...
KLA10081 ACE vulnerability in Autodesk
An unspecified vulnerability was found in Autodesk products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DWG file. Original advisories Autodesk bulletin Related products AutoCAD...