ГлавнаяУязвимости → CVE-2024-9996
7.8высокая

CVE-2024-9996

Описание

A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

Затрагиваемое ПО
Autodesk AutocadAutodesk Autocad advance steelAutodesk Autocad architectureAutodesk Autocad civil 3dAutodesk Autocad electricalAutodesk Autocad ltAutodesk Autocad mechanicalAutodesk Autocad mepAutodesk Autocad plant 3dAutodesk Dwg trueview
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0021