Vulnerabilities > Autodesk
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-29 | CVE-2022-27864 | Double Free vulnerability in Autodesk Design Review A Double Free vulnerability allows remote attackers to execute arbitrary code through DesignReview.exe application on PDF files within affected installations. | 8.8 |
| 2022-07-29 | CVE-2022-27865 | Out-of-bounds Write vulnerability in Autodesk Design Review A maliciously crafted TGA or PCX file may be used to write beyond the allocated buffer through DesignReview.exe application while parsing TGA and PCX files. | 7.8 |
| 2022-07-29 | CVE-2022-27866 | Out-of-bounds Read vulnerability in Autodesk Design Review A maliciously crafted TIFF file when consumed through DesignReview.exe application can be forced to read beyond allocated boundaries when parsing the TIFF file. | 7.8 |
| 2022-07-29 | CVE-2022-27873 | XXE vulnerability in Autodesk Fusion 360 An attacker can force the victim’s device to perform arbitrary HTTP requests in WAN through a malicious SVG file being parsed by Autodesk Fusion 360’s document parser. | 7.8 |
| 2022-07-29 | CVE-2022-33881 | Out-of-bounds Read vulnerability in Autodesk products Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. | 7.8 |
| 2022-06-21 | CVE-2022-27867 | Use After Free vulnerability in Autodesk Autocad A maliciously crafted JT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. | 7.8 |
| 2022-06-21 | CVE-2022-27868 | Use After Free vulnerability in Autodesk Autocad 2023 A maliciously crafted CAT file in Autodesk AutoCAD 2023 can be used to trigger use-after-free vulnerability. | 7.8 |
| 2022-06-21 | CVE-2022-27869 | Out-of-bounds Write vulnerability in Autodesk Autocad 2023 A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. | 7.8 |
| 2022-06-21 | CVE-2022-27870 | Out-of-bounds Write vulnerability in Autodesk Autocad 2023 A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA file. | 7.8 |
| 2022-06-21 | CVE-2022-27871 | Allocation of Resources Without Limits or Throttling vulnerability in Autodesk products Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. | 7.8 |