CVE-2019-7360

Name of the Vulnerable Software and Affected Versions Autodesk Advance Steel version 2018 Autodesk AutoCAD version 2018 Autodesk AutoCAD Architecture version 2018 Autodesk AutoCAD Electrical version 2018 Autodesk AutoCAD Map 3D version 2018 Autodesk AutoCAD Mechanical version 2018 Autodesk AutoCAD MEP version 2018 Autodesk AutoCAD P&ID version 2018 Autodesk AutoCAD Plant 3D version 2018 Autodesk AutoCAD LT version 2018 Autodesk Civil 3D version 2018

Description The issue is related to an exploitable use-after-free vulnerability in the DXF-parsing functionality. This vulnerability can be triggered by a specially crafted DXF file, potentially resulting in code execution.

Recommendations For Autodesk Advance Steel version 2018, update to a fixed version if available. For Autodesk AutoCAD version 2018, update to a fixed version if available. For Autodesk AutoCAD Architecture version 2018, update to a fixed version if available. For Autodesk AutoCAD Electrical version 2018, update to a fixed version if available. For Autodesk AutoCAD Map 3D version 2018, update to a fixed version if available. For Autodesk AutoCAD Mechanical version 2018, update to a fixed version if available. For Autodesk AutoCAD MEP version 2018, update to a fixed version if available. For Autodesk AutoCAD P&ID version 2018, update to a fixed version if available. For Autodesk AutoCAD Plant 3D version 2018, update to a fixed version if available. For Autodesk AutoCAD LT version 2018, update to a fixed version if available. For Autodesk Civil 3D version 2018, update to a fixed version if available. As a temporary workaround, consider disabling the DXF-parsing functionality until a patch is available.