CVE-2023-29076

Name of the Vulnerable Software and Affected Versions Autodesk AutoCAD versions 2023 through 2024

Description The issue is related to a memory corruption vulnerability when parsing certain file types, including SLDASM, MODEL, SAT, and CATPART files. This vulnerability can be exploited to execute arbitrary code in the current process. The vulnerability is caused by the lack of size checking on input data when copying the buffer, which can lead to memory corruption.

Recommendations For Autodesk AutoCAD versions 2023 and 2024, update to a version that includes the fix for this issue to prevent memory corruption and potential code execution. As a temporary workaround, consider restricting the parsing of SLDASM, MODEL, SAT, and CATPART files until a patch is available. Avoid using the vulnerable file parsing functions until the issue is resolved.