Description
A maliciously crafted MODEL file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Autodesk | AutoCAD, Advance Steel and Civil 3D | unknown |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-32676 | A maliciously crafted MODEL file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: autodesk
Published:
Updated: 2024-08-02T14:00:15.309Z
Reserved: 2023-03-30T21:27:50.091Z
Link: CVE-2023-29073
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-11-23T03:15:41.303
Modified: 2024-11-21T07:56:29.993
Link: CVE-2023-29073
Redhat
No data.
OpenCVE Enrichment
No data.