A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
References
Link | Resource |
---|---|
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004 | Patch Vendor Advisory |
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004 - Patch, Vendor Advisory |
Information
Published : 2022-10-21 16:15
Updated : 2024-11-21 07:25
NVD link : CVE-2022-42942
Mitre link : CVE-2022-42942
CVE.ORG link : CVE-2022-42942
JSON object : View
Products Affected
autodesk
- autocad_civil_3d
- autocad_advance_steel
- autocad_plant_3d
- autocad_electrical
- autocad_map_3d
- autocad
- autocad_mep
- design_review
- autocad_architecture
- autocad_mechanical
- autocad_lt
CWE
CWE-787
Out-of-bounds Write