Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-gwgm-rvh4-63c2

Опубликовано: 25 июн. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

Ссылки

EPSS

Процентиль: 58%
0.0037
Низкий

8.8 High

CVSS3

CVE ID

CVE-2024-23147

Дефекты

CWE-119
CWE-787

Связанные уязвимости

nvd логотип

CVE-2024-23147

CVSS3: 7.8
nvd
больше 1 года назад

A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

fstec логотип

BDU:2024-09724

CVSS3: 8.8
fstec
около 2 лет назад

Уязвимость библиотек ASMKERN228A.dll и ASMKERN229A.dll программного обеспечения для моделирования, проектирования и черчения AutoCAD, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 58%
0.0037
Низкий

8.8 High

CVSS3

CVE ID

CVE-2024-23147

Дефекты

CWE-119
CWE-787