CVE-2019-7361

Name of the Vulnerable Software and Affected Versions Autodesk Advance Steel version 2018 Autodesk AutoCAD version 2018 Autodesk AutoCAD Architecture version 2018 Autodesk AutoCAD Electrical version 2018 Autodesk AutoCAD Map 3D version 2018 Autodesk AutoCAD Mechanical version 2018 Autodesk AutoCAD MEP version 2018 Autodesk AutoCAD P&ID version 2018 Autodesk AutoCAD Plant 3D version 2018 Autodesk AutoCAD LT version 2018 Autodesk Civil 3D version 2018

Description The issue allows an attacker to potentially execute code by convincing a victim to open a malicious action micro (.actm) file containing serialized data.

Recommendations For Autodesk Advance Steel 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD Architecture 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD Electrical 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD Map 3D 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD Mechanical 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD MEP 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD P&ID 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD Plant 3D 2018, update to a version that includes a fix for this issue. For Autodesk AutoCAD LT 2018, update to a version that includes a fix for this issue. For Autodesk Civil 3D 2018, update to a version that includes a fix for this issue. As a temporary workaround, consider avoiding the use of .actm files from untrusted sources until a patch is available.