CVE-2021-40159

Name of the Vulnerable Software and Affected Versions Autodesk Inventor versions 2019 through 2022

Description The issue is related to an Information Disclosure vulnerability when parsing JT files, which, in conjunction with other vulnerabilities, may lead to code execution through maliciously crafted JT files in the context of the current process. This could potentially allow for remote code execution.

Recommendations For Autodesk Inventor versions 2019 through 2022, consider avoiding the use of JT files from untrusted sources until a patch is available. As a temporary workaround, consider restricting the parsing of JT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.