CVE-2024-9997

Name of the Vulnerable Software and Affected Versions Autodesk AutoCAD (affected versions not specified)

Description The issue is related to a Memory Corruption vulnerability that can be triggered by a maliciously crafted DWG file when parsed in acdb25.dll through Autodesk AutoCAD. This can allow a malicious actor to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process. The vulnerability is associated with a buffer copy operation without checking the size of the input data, which can be exploited to execute arbitrary code when the program processes a specially crafted DWG file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.