Advance Steel@* Security Vulnerabilities and Issues — Advance Steel@* CVE List

Lucene search

AutodeskAdvance Steel*

50 matches found

CVE•added 2024/02/22 3:15 a.m.•3837 views

CVE-2024-23124

A maliciously crafted STP file, when parsed in ASMIMPORT228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00362EPSS

CVE•added 2024/02/22 3:15 a.m.•3557 views

CVE-2024-23127

A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the co...

7.8CVSS6.6AI score0.00273EPSS

CVE•added 2024/02/22 3:15 a.m.•3487 views

CVE-2024-23126

A maliciously crafted CATPART file when parsed CC5Dll.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00107EPSS

CVE•added 2024/02/22 5:15 a.m.•3459 views

CVE-2024-23134

A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS6.7AI score0.00347EPSS

CVE•added 2024/02/22 4:15 a.m.•3427 views

CVE-2024-23130

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current p...

7.8CVSS6.7AI score0.00316EPSS

CVE•added 2024/02/22 4:15 a.m.•3424 views

CVE-2024-23133

A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk applications can lead to a memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

7.8CVSS8AI score0.00093EPSS

CVE•added 2024/02/22 5:15 a.m.•3398 views

CVE-2024-23135

A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.7AI score0.00685EPSS

CVE•added 2024/02/22 5:15 a.m.•3391 views

CVE-2024-23136

A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.7AI score0.00319EPSS

CVE•added 2024/02/22 5:15 a.m.•3390 views

CVE-2024-23137

A maliciously crafted STP or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS6.7AI score0.02174EPSS

CVE•added 2024/02/22 4:15 a.m.•3389 views

CVE-2024-23131

A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll or ASMDATAX228A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to c...

7.8CVSS6.7AI score0.00316EPSS

CVE•added 2024/02/22 4:15 a.m.•3387 views

CVE-2024-23128

A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the...

7.8CVSS6.8AI score0.00273EPSS

CVE•added 2024/02/22 4:15 a.m.•3384 views

CVE-2024-23129

A maliciously crafted MODEL 3DM, STP, or SLDASM file, when in opennurbs.dll parsed through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the ...

7.8CVSS6.8AI score0.00234EPSS

CVE•added 2024/02/22 2:15 a.m.•3382 views

CVE-2024-23123

A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the curr...

7.8CVSS7.7AI score0.00371EPSS

CVE•added 2024/02/22 4:15 a.m.•3381 views

CVE-2024-23132

A maliciously crafted STP file in atf_dwg_consumer.dll when parsed through Autodesk applications can lead to a memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

7.8CVSS8AI score0.00261EPSS

CVE•added 2024/02/22 2:15 a.m.•3380 views

CVE-2024-23122

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00371EPSS

CVE•added 2024/02/22 3:15 a.m.•3377 views

CVE-2024-23125

A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00054EPSS

CVE•added 2024/02/22 2:15 a.m.•3361 views

CVE-2024-23121

A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00429EPSS

CVE•added 2024/08/20 12:15 a.m.•90 views

CVE-2024-7305

A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00083EPSS

CVE•added 2024/02/22 12:15 a.m.•81 views

CVE-2024-23120

A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the conte...

7.8CVSS7.7AI score0.00319EPSS

CVE•added 2024/02/22 12:15 a.m.•76 views

CVE-2024-0446

A maliciously crafted STP, CATPART or MODEL file, when parsed in ASMKERN228A.dll and ASMdatax229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the...

7.8CVSS7.7AI score0.00123EPSS

CVE•added 2024/06/25 2:15 a.m.•64 views

CVE-2024-23142

A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.2AI score0.00236EPSS

CVE•added 2024/06/25 4:15 a.m.•55 views

CVE-2024-36999

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•55 views

CVE-2024-37005

A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS8.4AI score0.00308EPSS

CVE•added 2024/06/25 2:15 a.m.•53 views

CVE-2024-23140

A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current proc...

7.8CVSS7.6AI score0.00272EPSS

CVE•added 2024/06/25 3:15 a.m.•53 views

CVE-2024-23149

A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.3AI score0.00308EPSS

CVE•added 2024/06/25 4:15 a.m.•53 views

CVE-2024-37004

A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.5AI score0.00152EPSS

CVE•added 2024/06/25 4:15 a.m.•52 views

CVE-2024-23152

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.6AI score0.00318EPSS

CVE•added 2024/06/25 4:15 a.m.•52 views

CVE-2024-23156

A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.8AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•52 views

CVE-2024-23159

A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.6AI score0.00571EPSS

CVE•added 2024/06/25 3:15 a.m.•52 views

CVE-2024-37000

A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

7.8CVSS7.8AI score0.00112EPSS

CVE•added 2024/06/25 4:15 a.m.•51 views

CVE-2024-23150

A maliciously crafted PRT file, when parsed in odxug_dll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00087EPSS

CVE•added 2024/06/25 4:15 a.m.•49 views

CVE-2024-37006

A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

7.8CVSS7.8AI score0.00158EPSS

CVE•added 2024/06/25 2:15 a.m.•48 views

CVE-2024-23141

A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.3AI score0.00235EPSS

CVE•added 2024/06/25 3:15 a.m.•48 views

CVE-2024-37001

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS8AI score0.00123EPSS

CVE•added 2024/06/25 3:15 a.m.•48 views

CVE-2024-37002

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.5AI score0.0015EPSS

CVE•added 2024/06/25 4:15 a.m.•47 views

CVE-2024-23157

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.8AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•47 views

CVE-2024-37007

A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.6AI score0.00516EPSS

CVE•added 2024/06/25 3:15 a.m.•46 views

CVE-2024-23145

A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS8.1AI score0.00235EPSS

CVE•added 2024/06/25 3:15 a.m.•46 views

CVE-2024-23147

A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the co...

7.8CVSS7.1AI score0.002EPSS

CVE•added 2024/06/25 3:15 a.m.•46 views

CVE-2024-23148

7.8CVSS7.5AI score0.00235EPSS

CVE•added 2024/06/25 4:15 a.m.•46 views

CVE-2024-23155

A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk applications, can be used to cause a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00144EPSS

CVE•added 2024/06/25 4:15 a.m.•46 views

CVE-2024-37003

A maliciously crafted DWG and SLDPRT file, when parsed in opennurbs.dll and ODXSW_DLL.dll through Autodesk applications, can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of ...

7.8CVSS7.6AI score0.00087EPSS

CVE•added 2024/06/25 2:15 a.m.•45 views

CVE-2024-23143

A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll through Autodesk applications, can force an Out-of-Bound Read and/or Out-of-Bound Write. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary cod...

7.8CVSS8AI score0.002EPSS

CVE•added 2024/06/25 4:15 a.m.•45 views

CVE-2024-23151

A maliciously crafted 3DM file, when parsed in ASMkern229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00235EPSS

CVE•added 2024/06/25 3:15 a.m.•44 views

CVE-2024-23146

A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current pr...

7.8CVSS7.6AI score0.002EPSS

CVE•added 2024/06/25 4:15 a.m.•44 views

CVE-2024-23154

A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.5AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•43 views

CVE-2024-23158

A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-free vulnerability. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.0051EPSS

CVE•added 2024/06/25 2:15 a.m.•42 views

CVE-2024-23144

7.8CVSS7.7AI score0.00235EPSS

CVE•added 2024/06/25 4:15 a.m.•42 views

CVE-2024-23153

A maliciously crafted MODEL file, when parsed in libodx.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.6AI score0.00308EPSS

CVE•added 2024/03/18 12:15 a.m.•34 views

CVE-2024-23138

A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00326EPSS