CVE-2022-33889

Summary

A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used to write beyond the allocated heap buffer. This vulnerability could lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk® Design Review, Autodesk® Advance Steel, Autodesk® Civil 3D®2018, 2023, 2022affected

Weaknesses

  • Heap based Overflow Buffer

ADP Enrichment

CVE Program Container

Additional References

References