CVE-2019-7360
N/A
N/A
Summary
An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018, Autodesk AutoCAD P&ID 2018, Autodesk AutoCAD Plant 3D 2018, Autodesk AutoCAD LT 2018, and Autodesk Civil 3D 2018. A specially crafted DXF file may trigger a use-after-free, resulting in code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Autodesk | Autodesk Civil 3D | 2018 | affected |
| Autodesk | Autodesk Advance Steel | 2018 | affected |
| Autodesk | Autodesk AutoCAD | 2018 | affected |
| Autodesk | Autodesk AutoCAD Architecture | 2018 | affected |
| Autodesk | Autodesk AutoCAD Electrical | 2018 | affected |
| Autodesk | Autodesk AutoCAD Map 3D | 2018 | affected |
| Autodesk | Autodesk AutoCAD Mechanical | 2018 | affected |
| Autodesk | Autodesk AutoCAD MEP | 2018 | affected |
| Autodesk | Autodesk AutoCAD P&ID | 2018 | affected |
| Autodesk | Autodesk AutoCAD Plant 3D | 2018 | affected |
| Autodesk | Autodesk AutoCAD LT | 2018 | affected |
Weaknesses
- Heap Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.