A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists because the application fails to handle a crafted DWG file, which causes an unhandled exception. An attacker can leverage this vulnerability to execute arbitrary code.
References
Link | Resource |
---|---|
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0007 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: autodesk
Published: 2021-06-25T12:41:19
Updated: 2022-04-13T17:06:06
Reserved: 2021-02-09T00:00:00
Link: CVE-2021-27042
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-25T13:15:08.247
Modified: 2022-05-13T17:35:54.563
Link: CVE-2021-27042
JSON object: View
Redhat Information
No data.
CWE