Buffer Overflow in AutoCAD 2022 by Autodesk
CVE-2022-25788

7.8HIGH

Key Information:

Vendor: Autodesk
Status: Autodesk Advanced Steel, Civil 3d, Autocad, Autocad Lt, Autocad Architecture, Autocad Electrical, Autocad Map 3d, Autocad Mechanical, Autocad Mep, Autocad Plant 3d
Vendor: CVE Published:; 19 April 2022

Summary

An issue exists in Autodesk AutoCAD 2022 that allows a maliciously crafted JT file to exploit a buffer overflow. This vulnerability poses a risk as it could lead to arbitrary code execution when the application processes the compromised JT files. Users of AutoCAD 2022 should ensure they are aware of this risk and implement necessary security measures to mitigate potential attacks.

Affected Version(s)

Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D 2022.1.1

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 19, 2022
Vulnerability Reserved
Feb 22, 2022