CVE-2021-27043

Summary

An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D2022.1.1affected

Weaknesses

  • Write-what-where Condition Vulnerabiliity

ADP Enrichment

CVE Program Container

Additional References

References