CVE-2021-27040

Summary

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D2022, 2021, 2020, 2019affected

Weaknesses

  • Out-of-bound Read Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References