ГлавнаяУязвимости → CVE-2024-7992
7.8высокая

CVE-2024-7992

Описание

A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Затрагиваемое ПО
Autodesk AutocadAutodesk Autocad advance steelAutodesk Autocad architectureAutodesk Autocad civil 3dAutodesk Autocad electricalAutodesk Autocad ltAutodesk Autocad mechanicalAutodesk Autocad mepAutodesk Autocad plant 3dAutodesk Dwg trueview
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0021