CVE-2021-40162: A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the…

high7.8CVSS 3.1

AVLACLPRNUIRSUCHIHAH

A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.

Affected

77 ranges· showing 25

Vendor	Product	Version range	Fixed in
autodesk	autocad	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad	>= 2022 < 2022.1.2	2022.1.2
autodesk	autocad_advance_steel	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad_advance_steel	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad_advance_steel	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad_advance_steel	>= 2022 < 2022.1.2	2022.1.2
autodesk	autocad_architecture	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad_architecture	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad_architecture	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad_architecture	>= 2022 < 2022.1.2	2022.1.2
autodesk	autocad_civil_3d	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad_civil_3d	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad_civil_3d	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad_civil_3d	>= 2022 < 2022.1.2	2022.1.2
autodesk	autocad_electrical	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad_electrical	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad_electrical	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad_electrical	>= 2022 < 2022.1.2	2022.1.2
autodesk	autocad_lt	>= 2019 < 2019.1.4	2019.1.4
autodesk	autocad_lt	>= 2020 < 2020.1.5	2020.1.5
autodesk	autocad_lt	>= 2020 < 2020.3.2	2020.3.2
autodesk	autocad_lt	>= 2021 < 2021.1.2	2021.1.2
autodesk	autocad_lt	>= 2021 < 2021.2.2	2021.2.2