exploitDog

GHSA-mhg9-7866-m76h

Опубликовано: 25 июн. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

Ссылки

EPSS

Процентиль: 43%

0.00206

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-416

Связанные уязвимости

CVE-2024-37004

CVSS3: 7.8

nvd

больше 1 года назад

A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

BDU:2024-09734

CVSS3: 8.8

fstec

почти 2 года назад

Уязвимость библиотеки ASMKERN229A.dll программного обеспечения для моделирования, проектирования и черчения AutoCAD, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 43%

0.00206

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-416