CVE-2024-23151

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD (affected versions not specified)

Description: The issue is related to a maliciously crafted 3DM file that, when parsed in ASMkern229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write. This can be leveraged by a malicious actor to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. The vulnerability is associated with an Out-of-Bounds Write in the memory buffer, potentially allowing an attacker to gain unauthorized access to protected information or execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.