← Volver a CVEs
CVE-2023-29076
CRITICAL9.8
Descripcion
A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado11/23/2023
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
autodesk:autocadautodesk:autocad_advance_steelautodesk:autocad_architectureautodesk:autocad_civil_3dautodesk:autocad_electricalautodesk:autocad_ltautodesk:autocad_map_3dautodesk:autocad_mechanicalautodesk:autocad_mepautodesk:autocad_plant_3d
Debilidades (CWE)
CWE-119
Referencias
https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0018(psirt@autodesk.com)
https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0018(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.