CVE-2022-27869

Summary

A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D2023affected

Weaknesses

  • Out-of-bound Read Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References