Vulnerabilities > Autodesk > Autocad Mechanical > High

DATE CVE VULNERABILITY TITLE RISK
2022-10-03 CVE-2022-33884 Out-of-bounds Read vulnerability in Autodesk products
Parsing a maliciously crafted X_B file can force Autodesk AutoCAD 2023 and 2022 to read beyond allocated boundaries.
network
low complexity
autodesk CWE-125
7.5
2022-10-03 CVE-2022-33885 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the allocated buffer.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33886 Improper Handling of Exceptional Conditions vulnerability in Autodesk products
A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer while parsing through Autodesk AutoCAD 2023 and 2022.
local
low complexity
autodesk CWE-755
7.8
2022-10-03 CVE-2022-33887 Improper Handling of Exceptional Conditions vulnerability in Autodesk products
A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled exception.
local
low complexity
autodesk CWE-755
7.8
2022-10-03 CVE-2022-33888 Out-of-bounds Write vulnerability in Autodesk products
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33889 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used to write beyond the allocated heap buffer.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33890 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted PCT or DWF file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by read access violation.
local
low complexity
autodesk CWE-787
7.8
2022-01-25 CVE-2021-40158 Out-of-bounds Read vulnerability in Autodesk products
A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated boundaries when parsing the JT file.
local
low complexity
autodesk CWE-125
7.8
2022-01-25 CVE-2021-40159 Information Exposure vulnerability in Autodesk products
An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnerabilities may lead to code execution through maliciously crafted JT files in the context of the current process.
local
low complexity
autodesk CWE-200
7.8
2021-12-23 CVE-2021-40161 Out-of-bounds Write vulnerability in Autodesk products
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version.
local
low complexity
autodesk CWE-787
7.8