EUVD-2024-20660

Malicious code in bioql PyPI...

The vulnerabilities of the ODXSW_DLL.dll and libodxdll.dll libraries, which are software components for modeling, design, and drawing in AutoCAD, allow attackers to gain unauthorized access to protected information, execute arbitrary code, or cause service interruptions.

The vulnerability of the ODXSWDLL.dll and libodxdll.dll libraries, which are used in AutoCAD modeling, design, and drafting software, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...

CVE-2024-8595

A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process...

CVE-2024-23141

A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process...

CVE-2024-23141

A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process...

CVE-2024-23142 Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software

A maliciously crafted CATPART, STP, and MODEL file, when parsed in atfdwgconsumer.dll, rosex64vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process...

CVE-2024-23142

CVE-2024-23142 describes memory corruption via parsing CATPART/STP/MODEL files in Autodesk AutoCAD, leading to use-after-free and potential code execution in the affected process. Public references indicate the issue arises when these files are processed by components such as atf_dwg_consumer.dll...

CVE-2024-23141

Autodesk AutoCAD is affected by CVE-2024-23141 due to parsing of a malicious MODEL file in libodxdll, which can cause a double-free and enable code execution in the current process. The CVSSv3.1 base score is 7.8 (HIGH) with Local attack, no privileges required, but user interaction needed; impac...

CVE-2024-23128

A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of t...

CVE-2024-23121

A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

PT-2024-8047 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD affected versions not specified Description: A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free, potentially leading to code execution in the current process. Thi...

PT-2023-9655 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD affected versions not specified Description: The issue is related to an Out-of-Bounds Write vulnerability in the libodxdll.dll library of Autodesk AutoCAD, caused by parsing a maliciously crafted MODEL file. This can allow an...