CVE-2024-23149

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD (affected versions not specified)

Description: The issue is related to an out-of-bounds read in the ODXSW DLL.dll library of Autodesk AutoCAD, caused by a maliciously crafted SLDDRW file. This can allow a remote attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a denial of service. The vulnerability can be exploited by parsing a specially crafted SLDDRW file, potentially leading to a crash, sensitive data reading, or arbitrary code execution in the context of the current process.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.