Описание
A Double Free vulnerability allows remote malicious actors to execute arbitrary code on DWF file in Autodesk Navisworks 2022 within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2022 (включая) до 2022.2 (исключая)
cpe:2.3:a:autodesk:navisworks:*:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.00418
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-415
Связанные уязвимости
CVSS3: 7.8
github
почти 4 года назад
A Double Free vulnerability allows remote malicious actors to execute arbitrary code on DWF file in Autodesk Navisworks 2022 within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
EPSS
Процентиль: 61%
0.00418
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-415