Memory Corruption Vulnerability in Autodesk Design Review Application
CVE-2022-42936

7.8HIGH

Key Information:

Vendor

Autodesk
Status
Autodesk Design Review
Vendor
CVE Published:
21 October 2022

What is CVE-2022-42936?

A maliciously crafted .dwf or .pct file processed by the DesignReview.exe application can cause a memory corruption issue due to write access violations. This vulnerability may allow an attacker to leverage other vulnerabilities, potentially leading to unauthorized code execution within the context of the current process, posing significant security risks to affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Autodesk Design Review 2018, 2017, 2013, 2012, 2011

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.