Описание
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:autodesk:dwg_trueview:2023:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00134
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-427
CWE-427
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system.
EPSS
Процентиль: 33%
0.00134
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-427
CWE-427