CVE-2022-27871
Description
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This vulnerability may be exploited to execute arbitrary code.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.367
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Autodesk Design Review 2018 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MEP 2022 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Plant 3D 2022 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2019 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2020 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2019 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2020 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Architecture 2022 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Electrical 2022 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD MAP 3D 2022 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2021 | Windows |
| Multiple Vulnerabilities are affected in AutoCAD Mechanical 2022 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2021 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Advance Steel 2022 | Windows |
| Vulnerabilities CVE-2021-40160,CVE-2021-40161,CVE-2022-27871 are affected in Autodesk Revit 2020 | Windows |
| Vulnerabilities CVE-2021-40160,CVE-2021-40161,CVE-2022-27871 are affected in Autodesk Revit 2021 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Revit 2022 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2019 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2020 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2022 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234