Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7967-r4q5-m6jj

Опубликовано: 25 июн. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

Ссылки

EPSS

Процентиль: 69%
0.00609
Низкий

8.8 High

CVSS3

CVE ID

CVE-2024-23157

Дефекты

CWE-119
CWE-787

Связанные уязвимости

nvd логотип

CVE-2024-23157

CVSS3: 7.8
nvd
больше 1 года назад

A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

fstec логотип

BDU:2024-09259

CVSS3: 8.8
fstec
около 2 лет назад

Уязвимость библиотеки ODXSW_DLL.dll программного обеспечения для моделирования, проектирования и черчения AutoCAD, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 69%
0.00609
Низкий

8.8 High

CVSS3

CVE ID

CVE-2024-23157

Дефекты

CWE-119
CWE-787