EUVD-2024-36597

Malicious code in bioql PyPI...

CVE-2023-29068

A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

The vulnerability of the pskernel.DLL library, which is used in software for simulation, design, and drawing in AutoCAD, allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the pskernel.DLL library, which is used for simulation, design, and drafting in AutoCAD, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information,...

Autodesk AutoCAD Out-of-Bounds Write Vulnerability (CNVD-2024-33007)

Autodesk AutoCAD is a set of professional 3D drawing software from the American Autodesk Corporation. An out-of-bounds write vulnerability exists in Autodesk AutoCAD version 2024.1.4, which stems from a lack of proper validation of user-supplied data when parsing maliciously crafted XB and XT fil...

CVE-2024-37007

A maliciously crafted XB and XT file, when parsed in pskernel.DLL through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process...

CVE-2024-37005

A maliciously crafted XB file, when parsed in pskernel.DLL through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2024-37000

A maliciously crafted XB file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process...

CVE-2024-23146

A maliciously crafted XB and XT file, when parsed in pskernel.DLL through through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current...

CVE-2024-37000

A maliciously crafted XB file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a set of professional 3D drawing software from the American Autodesk Corporation. An out-of-bounds read vulnerability exists in Autodesk AutoCAD version 2024.1.4, which stems from a lack of proper validation of user-supplied data by XB and XT during parsing of pskernel.DLL, an...

PT-2024-8188

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD affected versions not specified Description: The issue is related to a maliciously crafted X B or X T file that can cause an Out-of-Bound Read when parsed in pskernel.DLL through Autodesk applications. This can allow a...

PT-2024-8219

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD affected versions not specified Description: A maliciously crafted X B file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This issue can...

CVE-2023-29068

A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

CVE-2023-29068

A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

CVE-2023-25004

A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these vulnerabilities may lead to code execution...

CVE-2023-25004

A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these vulnerabilities may lead to code execution...

CVE-2023-29068

A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

Autodesk pskernel.dll 输入验证错误漏洞

Autodesk pskernel.dll is a product component of Autodesk USA. Autodesk pskernel.dll contains a security vulnerability that originates from allowing an attacker to craft the pskernel.dll file to trigger an integer overflow vulnerability and lead to code execution...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from the US company Autodesk. A security vulnerability exists in Autodesk AutoCAD version 2023 and Maya version 2022, which originates from a maliciously crafted pskernel.dll file that can be used to trigger an out-of-bounds read/wri...

Vulnerabilities fixed in several Autodesk products

Autodesk has fixed vulnerabilities in several products. A malicious party can exploit the vulnerabilities to execute arbitrary code execute arbitrary code within the vulnerable application by injecting a rogue pskernel.dll. Inserting such a rogue .dll file requires social engineering, or...