Memory Corruption Vulnerability in Autodesk DWG Application
CVE-2022-33888
7.8HIGH
Key Information:
- Vendor
Autodesk
- Vendor
- CVE Published:
- 3 October 2022
What is CVE-2022-33888?
A crafted Dwg2Spd file processed by the Autodesk DWG application can result in a memory corruption issue due to write access violations. This vulnerability may allow malicious actors to execute code within the context of the current process, particularly when exploited in conjunction with other vulnerabilities.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
utodesk® AutoCAD®, Advance Steel and Civil 3D® 2023, 2022
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved