PT-2024-16117 · Solidworks · Edrawings

Name of the Vulnerable Software and Affected Versions: eDrawings versions Release SOLIDWORKS 2024 through Release SOLIDWORKS 2025 Description: The issue is related to Heap-based Buffer Overflow and Uninitialized Variable vulnerabilities in the X B and SAT file reading procedure. These...

CVE-2023-42131

Ansys SpaceClaim XB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2023-42131

Ansys SpaceClaim XB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2023-34292

Ashlar-Vellum Cobalt Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

PT-2022-26674 · Autodesk · Autodesk Maya

Name of the Vulnerable Software and Affected Versions: Autodesk Maya versions 2022 through 2023 Description: A maliciously crafted X B file can be used to write beyond the allocated buffer when parsed through Autodesk Maya. This issue can lead to arbitrary code execution. Recommendations: For...

PT-2022-21886 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD versions 2022 through 2023 Description: The issue arises when parsing a maliciously crafted X B file, which can cause Autodesk AutoCAD to read beyond allocated boundaries. This could potentially lead to code execution in the...

CVE-2022-40644

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

CVE-2022-40645

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

PT-2022-25442 · Ansys · Ansys Spaceclaim

Name of the Vulnerable Software and Affected Versions: Ansys SpaceClaim version 2022 R1 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The fla...