CVE-2024-23120

Name of the Vulnerable Software and Affected Versions Autodesk AutoCAD (affected versions not specified)

Description The issue is related to an Out-of-Bounds Write vulnerability that can occur when parsing maliciously crafted STP and STEP files in Autodesk AutoCAD using the ASMIMPORT228A.dll and ASMIMPORT229A.dll libraries. This vulnerability can be leveraged by a malicious actor to cause a crash, read sensitive data, execute arbitrary code in the context of the current process, or obtain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.