Autocad Map 3d@* Security Vulnerabilities and Issues — Page 2 of Autocad Map 3d@* CVE List

Lucene search

AutodeskAutocad Map 3d*

104 matches found

CVE•added 2022/10/03 3:15 p.m.•54 views

CVE-2022-33889

A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used to write beyond the allocated heap buffer. This vulnerability could lead to arbitrary code execution.

7.8CVSS7.8AI score0.00062EPSS

CVE•added 2025/04/15 9:15 p.m.•54 views

CVE-2025-1275

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2025/03/13 5:15 p.m.•54 views

CVE-2025-1430

A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•54 views

CVE-2025-1649

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•54 views

CVE-2025-1650

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•53 views

CVE-2025-1431

A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•53 views

CVE-2025-1432

A maliciously crafted 3DM file, when parsed through Autodesk AutoCAD, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•52 views

CVE-2025-1433

A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.4AI score0.00027EPSS

CVE•added 2025/03/13 5:15 p.m.•52 views

CVE-2025-1652

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2022/10/03 3:15 p.m.•51 views

CVE-2022-33885

A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the allocated buffer. This vulnerability can lead to arbitrary code execution.

7.8CVSS7.7AI score0.00088EPSS

CVE•added 2024/06/25 3:15 a.m.•51 views

CVE-2024-23149

A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.3AI score0.00319EPSS

CVE•added 2024/06/25 4:15 a.m.•51 views

CVE-2024-37005

A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary code in the context of the current process.

8.8CVSS8.4AI score0.00825EPSS

CVE•added 2024/06/25 2:15 a.m.•50 views

CVE-2024-23140

A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current proc...

8.8CVSS7.6AI score0.0069EPSS

CVE•added 2024/06/25 4:15 a.m.•50 views

CVE-2024-23156

A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

7.8CVSS7.8AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•50 views

CVE-2024-36999

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00331EPSS

CVE•added 2024/06/25 4:15 a.m.•50 views

CVE-2024-37004

A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

8.8CVSS7.5AI score0.00424EPSS

CVE•added 2025/03/13 5:15 p.m.•50 views

CVE-2025-1429

A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00027EPSS

CVE•added 2024/06/25 4:15 a.m.•49 views

CVE-2024-23150

A maliciously crafted PRT file, when parsed in odxug_dll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

8.8CVSS7.8AI score0.00242EPSS

CVE•added 2024/06/25 4:15 a.m.•49 views

CVE-2024-23159

A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

8.8CVSS7.6AI score0.01438EPSS

CVE•added 2024/06/25 3:15 a.m.•49 views

CVE-2024-37000

A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

8.8CVSS7.8AI score0.00314EPSS

CVE•added 2024/06/25 4:15 a.m.•47 views

CVE-2024-23152

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.6AI score0.0033EPSS

CVE•added 2025/03/13 5:15 p.m.•47 views

CVE-2025-1428

A maliciously crafted CATPART file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00027EPSS

CVE•added 2024/06/25 2:15 a.m.•46 views

CVE-2024-23141

A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

8.8CVSS7.3AI score0.00597EPSS

CVE•added 2023/11/23 3:15 a.m.•45 views

CVE-2023-29073

A maliciously crafted MODEL file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

9.8CVSS9.5AI score0.00335EPSS

CVE•added 2024/06/25 4:15 a.m.•45 views

CVE-2024-23157

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

8.8CVSS7.8AI score0.00837EPSS

CVE•added 2024/06/25 3:15 a.m.•45 views

CVE-2024-37001

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

8.8CVSS8AI score0.00345EPSS

CVE•added 2024/06/25 3:15 a.m.•45 views

CVE-2024-37002

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.5AI score0.00132EPSS

CVE•added 2024/06/25 4:15 a.m.•45 views

CVE-2024-37006

A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

8.8CVSS7.8AI score0.00442EPSS

CVE•added 2024/06/25 4:15 a.m.•45 views

CVE-2024-37007

A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.6AI score0.00673EPSS

CVE•added 2024/06/25 3:15 a.m.•44 views

CVE-2024-23145

A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary code in the context of the current process.

8.8CVSS8.1AI score0.00597EPSS

CVE•added 2024/06/25 3:15 a.m.•44 views

CVE-2024-23147

A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the co...

8.8CVSS7.1AI score0.00664EPSS

CVE•added 2024/06/25 3:15 a.m.•44 views

CVE-2024-23148

8.8CVSS7.5AI score0.00597EPSS

CVE•added 2024/06/25 4:15 a.m.•44 views

CVE-2024-23155

A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk applications, can be used to cause a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00144EPSS

CVE•added 2023/06/27 7:15 p.m.•43 views

CVE-2023-25004

A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these vulnerabilities may lead to code execution.

7.8CVSS8AI score0.00064EPSS

CVE•added 2023/04/14 7:15 p.m.•43 views

CVE-2023-27914

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the curr...

7.8CVSS7.8AI score0.00078EPSS

CVE•added 2024/06/25 2:15 a.m.•43 views

CVE-2024-23143

A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll through Autodesk applications, can force an Out-of-Bound Read and/or Out-of-Bound Write. A malicious actor can leverage this vulnerability to cause a crash,read sensitive data, or execute arbitrary cod...

8.8CVSS8AI score0.00509EPSS

CVE•added 2024/06/25 4:15 a.m.•43 views

CVE-2024-23151

A maliciously crafted 3DM file, when parsed in ASMkern229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00235EPSS

CVE•added 2024/06/25 4:15 a.m.•43 views

CVE-2024-37003

A maliciously crafted DWG and SLDPRT file, when parsed in opennurbs.dll and ODXSW_DLL.dll through Autodesk applications, can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of ...

8.8CVSS7.6AI score0.00242EPSS

CVE•added 2025/04/15 9:15 p.m.•43 views

CVE-2025-1276

A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00026EPSS

CVE•added 2023/04/14 7:15 p.m.•42 views

CVE-2023-27913

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to cause an Integer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00064EPSS

CVE•added 2024/06/25 4:15 a.m.•42 views

CVE-2024-23154

A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.5AI score0.00234EPSS

CVE•added 2024/06/25 4:15 a.m.•41 views

CVE-2024-23158

A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-free vulnerability. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.

7.8CVSS7.8AI score0.00278EPSS

CVE•added 2024/06/25 3:15 a.m.•40 views

CVE-2024-23146

A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

8.8CVSS7.7AI score0.00664EPSS

CVE•added 2024/06/25 4:15 a.m.•40 views

CVE-2024-23153

A maliciously crafted MODEL file, when parsed in libodx.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

8.8CVSS7.6AI score0.0078EPSS

CVE•added 2023/11/23 4:15 a.m.•39 views

CVE-2023-41140

A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

7.8CVSS7.7AI score0.00077EPSS

CVE•added 2024/06/25 2:15 a.m.•39 views

CVE-2024-23144

A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the curr...

8.8CVSS7.7AI score0.00597EPSS

CVE•added 2023/04/14 7:15 p.m.•38 views

CVE-2023-27915

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

7.8CVSS7.8AI score0.00061EPSS

CVE•added 2023/11/23 4:15 a.m.•37 views

CVE-2023-29076

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

9.8CVSS9.6AI score0.00297EPSS

CVE•added 2023/04/14 7:15 p.m.•35 views

CVE-2023-29067

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

7.8CVSS8AI score0.00061EPSS

CVE•added 2023/11/23 4:15 a.m.•34 views

CVE-2023-41139

A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

7.8CVSS7.7AI score0.00055EPSS

Total number of security vulnerabilities104