CVE-2022-27870

Summary

A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA file. This vulnerability may be exploited to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D2023affected

Weaknesses

  • Out-of-bound Write Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References