CVE-2024-23129

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Autodesk AutoCAD (affected versions not specified)

Description A maliciously crafted MODEL 3DM, STP, or SLDASM file, when parsed through Autodesk applications using opennurbs.dll, can lead to a memory corruption issue by write access violation. This issue, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2024-23129

ZDI-24-132

ZDI-24-137

ZDI-24-153

ZDI-24-156

ZDI-24-157

ZDI-24-691

ZDI-24-727

ZDI-24-774

Affected Products

Autodesk Autocad

CVE-2024-23129

Weakness Enumeration

Related Identifiers

Affected Products

References · 23