Vulnerabilities > Autodesk > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-22 CVE-2023-41145 Unspecified vulnerability in Autodesk Customer Portal
Autodesk users who no longer have an active license for an account can still access cases for that account.
network
low complexity
autodesk
5.3
2023-11-22 CVE-2023-41146 Unspecified vulnerability in Autodesk Customer Portal
Autodesk Customer Support Portal allows cases created by users under an account to see cases created by other users on the same account.
network
low complexity
autodesk
4.3
2022-06-21 CVE-2022-27867 Use After Free vulnerability in Autodesk Autocad
A maliciously crafted JT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability.
network
autodesk CWE-416
6.8
2022-06-21 CVE-2022-27868 Use After Free vulnerability in Autodesk Autocad 2023
A maliciously crafted CAT file in Autodesk AutoCAD 2023 can be used to trigger use-after-free vulnerability.
network
autodesk CWE-416
6.8
2022-06-21 CVE-2022-27869 Out-of-bounds Write vulnerability in Autodesk Autocad 2023
A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file.
network
autodesk CWE-787
6.8
2022-06-21 CVE-2022-27870 Out-of-bounds Write vulnerability in Autodesk Autocad 2023
A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA file.
network
autodesk CWE-787
6.8
2022-06-21 CVE-2022-27871 Allocation of Resources Without Limits or Throttling vulnerability in Autodesk products
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files.
network
autodesk CWE-770
6.8
2022-06-21 CVE-2022-27872 Improper Handling of Exceptional Conditions vulnerability in Autodesk Navisworks 2022
A maliciously crafted PDF file may be used to dereference a pointer for read or write operation while parsing PDF files in Autodesk Navisworks 2022.
network
autodesk CWE-755
6.8
2022-06-16 CVE-2022-27531 Out-of-bounds Read vulnerability in Autodesk 3DS MAX 2021/2022
A maliciously crafted TIF file can be forced to read beyond allocated boundaries in Autodesk 3ds Max 2022, and 2021 when parsing the TIF files.
network
autodesk CWE-125
6.8
2022-06-16 CVE-2022-27532 Out-of-bounds Write vulnerability in Autodesk 3DS MAX 2021/2022
A maliciously crafted TIF file in Autodesk 3ds Max 2022 and 2021 can be used to write beyond the allocated buffer while parsing TIF files.
network
autodesk CWE-787
6.8