Vulnerabilities > Autodesk > Design Review > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-06-25 | CVE-2021-27041 | Out-of-bounds Write vulnerability in multiple products A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. | 6.8 |
2019-08-23 | CVE-2019-7363 | Use After Free vulnerability in Autodesk Design Review Use-after-free vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. | 6.8 |
2019-08-23 | CVE-2019-7362 | Untrusted Search Path vulnerability in Autodesk Design Review DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. | 6.8 |
2015-12-15 | CVE-2015-8572 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autodesk Design Review 2013 Multiple buffer overflows in Autodesk Design Review (ADR) before 2013 Hotfix 2 allow remote attackers to execute arbitrary code via crafted RLE data in a (1) BMP or (2) FLI file, (3) encoded scan lines in a PCX file, or (4) DataSubBlock or (5) GlobalColorTable in a GIF file. | 6.8 |
2015-12-15 | CVE-2015-8571 | Numeric Errors vulnerability in Autodesk Design Review 2013 Integer overflow in Autodesk Design Review (ADR) before 2013 Hotfix 2 allows remote attackers to execute arbitrary code via a crafted biClrUsed value in a BMP file, which triggers a buffer overflow. | 6.8 |
2014-12-08 | CVE-2014-9268 | Improper Input Validation vulnerability in Autodesk Design Review 2011/2012/2013 The AdView.AdViewer.1 ActiveX control in Autodesk Design Review (ADR) before 2013 Hotfix 1 allows remote attackers to execute arbitrary code via a crafted DWF file. | 6.8 |