Vulnerabilities > Autodesk > Autocad MEP > High

DATE CVE VULNERABILITY TITLE RISK
2022-10-07 CVE-2021-40166 Use After Free vulnerability in Autodesk products
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them.
local
low complexity
autodesk CWE-416
7.8
2022-10-03 CVE-2022-33884 Out-of-bounds Read vulnerability in Autodesk products
Parsing a maliciously crafted X_B file can force Autodesk AutoCAD 2023 and 2022 to read beyond allocated boundaries.
network
low complexity
autodesk CWE-125
7.5
2022-10-03 CVE-2022-33885 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the allocated buffer.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33886 Improper Handling of Exceptional Conditions vulnerability in Autodesk products
A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer while parsing through Autodesk AutoCAD 2023, 2022, 2021, 2020, and Maya 2023 and 2022.
local
low complexity
autodesk CWE-755
7.8
2022-10-03 CVE-2022-33887 Improper Handling of Exceptional Conditions vulnerability in Autodesk products
A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled exception.
local
low complexity
autodesk CWE-755
7.8
2022-10-03 CVE-2022-33888 Out-of-bounds Write vulnerability in Autodesk products
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by write access violation.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33889 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used to write beyond the allocated heap buffer.
local
low complexity
autodesk CWE-787
7.8
2022-10-03 CVE-2022-33890 Out-of-bounds Write vulnerability in Autodesk products
A maliciously crafted PCT or DWF file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by read access violation.
local
low complexity
autodesk CWE-787
7.8
2022-07-29 CVE-2022-33881 Out-of-bounds Read vulnerability in Autodesk products
Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries.
local
low complexity
autodesk CWE-125
7.8
2022-06-21 CVE-2022-27871 Allocation of Resources Without Limits or Throttling vulnerability in Autodesk products
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files.
local
low complexity
autodesk CWE-770
7.8