51 matches found
CVE-2022-42945
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system...
CVE-2022-27523
A buffer over-read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the curre...
CVE-2022-27524
An out-of-bounds read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the...
EUVD-2013-3598
Malware in sbrugna...
EUVD-2022-46001
Malicious code in bioql PyPI...
EUVD-2024-20657
Malicious code in bioql PyPI...
EUVD-2022-32024
Malicious code in bioql PyPI...
EUVD-2022-32025
Malicious code in bioql PyPI...
EUVD-2022-30435
Malicious code in bioql PyPI...
CVE-2022-25795
A Memory Corruption Vulnerability in Autodesk TrueView 2022 and 2021 may lead to remote code execution through maliciously crafted DWG files...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
Autodesk DWG TrueView 25.0.x < 25.0.101.0 (2025.1) (adsk-sa-2024-0014)
The version of Autodesk DWG TrueView installed on the remote host is prior to 25.0.101.0 2025.1. It is, therefore, affected by a vulnerability as referenced in the adsk-sa-2024-0014 advisory. - A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, can force an...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138 Stack-based Overflow Vulnerability in the TrueViewTM Desktop Software
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2024-23138 Stack-based Overflow Vulnerability in the TrueViewTM Desktop Software
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
Autodesk DWG TrueView Security Vulnerability
Autodesk DWG TrueView is an application from the American company Autodesk. It is used to view and convert 2D and 3D DWG files for free. A security vulnerability exists in Autodesk DWG TrueView, which originates from parsing a maliciously crafted DWG file can lead to a stack-based overflow that c...
PT-2024-19688 · Autodesk · Autodesk Dwg Trueview
Name of the Vulnerable Software and Affected Versions: Autodesk DWG TrueView affected versions not specified Description: A maliciously crafted DWG file can cause a Stack-based Overflow when parsed through Autodesk DWG TrueView. This can be leveraged by a malicious actor to cause a crash, read...
The vulnerability of the software for opening, viewing, printing, and transforming DWG drawing files in TrueView arises from the operation that goes beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of TrueView’s software for opening, viewing, printing, and transforming DWG drawings arises from the execution of operations beyond the buffer limits in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
Autodesk DWG TrueView 2023 < 2023.1.1 RCE
The remote host has an install of Autodesk DWG TrueView version 2023 prior to 2023.1.1. It is, therefore, affected by a remote code execution vulnerability due to DLL search order hijacking. Note that Nessus has not tested for this issue but has instead relied only on the application's...