CVE-2022-25790
Description
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.418
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in AutoCAD MEP 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2022.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2022.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2022.0.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2020.1.4 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2021.1.1 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Civil 3D 2021 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Civil 3D 2022 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2022 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Civil 3D 2019.1.3 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Civil 3D 2020.1.4 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234