Memory Corruption Vulnerability in Autodesk Products
CVE-2023-29068

7.8HIGH

Key Information:

Vendor: Autodesk
Status: Autodesk Products
Vendor: CVE Published:; 27 June 2023

Summary

A vulnerability exists in Autodesk products due to a maliciously crafted file processed through the pskernel.dll. This flaw can result in memory corruption, potentially allowing attackers to execute arbitrary code within the context of the affected process. When exploited in combination with other security weaknesses, it poses significant security concerns for users and organizations relying on Autodesk software.

Affected Version(s)

Autodesk products 2023, 2022, 2021, 2020

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 27, 2023
Vulnerability Reserved
Mar 30, 2023