exploitDog

GHSA-rrpv-wj77-67hf

Опубликовано: 23 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

Ссылки

EPSS

Процентиль: 53%

0.00297

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2023-29076

CVSS3: 9.8

nvd

около 2 лет назад

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

BDU:2023-06043

CVSS3: 7.8

fstec

больше 2 лет назад

Уязвимость программного обеспечения для моделирования, проектирования и черчения AutoCAD, связанная с копированием буфера без проверки размера входных данных, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 53%

0.00297

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119