exploitDog

GHSA-8pc8-96q3-294c

Опубликовано: 11 фев. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 may be forced to read beyond allocated boundaries when parsing the JT file. This vulnerability can be exploited to execute arbitrary code

A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 may be forced to read beyond allocated boundaries when parsing the JT file. This vulnerability can be exploited to execute arbitrary code

Ссылки

EPSS

Процентиль: 63%

0.00443

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2021-40158

CVSS3: 7.8

nvd

около 4 лет назад

A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated boundaries when parsing the JT file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

EPSS

Процентиль: 63%

0.00443

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-125