exploitDog

CVE-2022-27869

Опубликовано: 21 июн. 2022

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code.

Ссылки

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004
Vendor Advisory
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:autodesk:autocad:2023:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00367

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

GHSA-p5r7-g898-v8p3

CVSS3: 7.8

github

больше 3 лет назад

A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code.

EPSS

Процентиль: 58%

0.00367

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-125