Filtered by vendor Autodesk
Subscriptions
Filtered by product Civil 3d
Subscriptions
Total
23 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-23147 | 1 Autodesk | 3 Advance Steel, Autocad, Civil 3d | 2024-08-01 | 8.8 High |
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process. | ||||
CVE-2024-23153 | 1 Autodesk | 9 Advance Steel, Autocad, Autocad Architecture and 6 more | 2024-08-01 | 8.8 High |
A maliciously crafted MODEL file, when parsed in libodx.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. | ||||
CVE-2024-23142 | 1 Autodesk | 9 Advance Steel, Autocad, Autocad Architecture and 6 more | 2024-08-01 | 8.8 High |
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process. |