CVE-2024-8597

Name of the Vulnerable Software and Affected Versions Autodesk AutoCAD (affected versions not specified)

Description The issue is related to a Memory Corruption vulnerability that can be triggered by parsing a maliciously crafted STP file in ASMDATAX230A.dll through Autodesk AutoCAD. This can allow a malicious actor to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process. The vulnerability is also described as a buffer overflow issue in the ASMDATAX230A.dll library, which can be exploited using a specially crafted STEP file to gain unauthorized access to protected information, execute arbitrary code, or cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.