CVE-2021-27040
N/A
N/A
Summary
A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D | 2022, 2021, 2020, 2019 | affected |
Weaknesses
- Out-of-bound Read Vulnerability
ADP Enrichment
CVE Program Container
Additional References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0004
- https://www.zerodayinitiative.com/advisories/ZDI-21-1238/
- https://www.zerodayinitiative.com/advisories/ZDI-21-1236/
- https://www.zerodayinitiative.com/advisories/ZDI-22-378/
- https://www.zerodayinitiative.com/advisories/ZDI-22-473/
References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0004
- https://www.zerodayinitiative.com/advisories/ZDI-21-1238/
- https://www.zerodayinitiative.com/advisories/ZDI-21-1236/
- https://www.zerodayinitiative.com/advisories/ZDI-22-378/
- https://www.zerodayinitiative.com/advisories/ZDI-22-473/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.