cbcvebase.
CVE-2021-40166
published 2022-10-07

CVE-2021-40166: A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them…

high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code.

Affected

77 ranges· showing 25
VendorProductVersion rangeFixed in
autodeskautocad>= 2019 < 2019.1.42019.1.4
autodeskautocad>= 2020 < 2020.1.52020.1.5
autodeskautocad>= 2021 < 2021.1.22021.1.2
autodeskautocad>= 2022 < 2022.1.22022.1.2
autodeskautocad_advance_steel>= 2019 < 2019.1.42019.1.4
autodeskautocad_advance_steel>= 2020 < 2020.1.52020.1.5
autodeskautocad_advance_steel>= 2021 < 2021.1.22021.1.2
autodeskautocad_advance_steel>= 2022 < 2022.1.22022.1.2
autodeskautocad_architecture>= 2019 < 2019.1.42019.1.4
autodeskautocad_architecture>= 2020 < 2020.1.52020.1.5
autodeskautocad_architecture>= 2021 < 2021.1.22021.1.2
autodeskautocad_architecture>= 2022 < 2022.1.22022.1.2
autodeskautocad_civil_3d>= 2019 < 2019.1.42019.1.4
autodeskautocad_civil_3d>= 2020 < 2020.1.52020.1.5
autodeskautocad_civil_3d>= 2021 < 2021.1.22021.1.2
autodeskautocad_civil_3d>= 2022 < 2022.1.22022.1.2
autodeskautocad_electrical>= 2019 < 2019.1.42019.1.4
autodeskautocad_electrical>= 2020 < 2020.1.52020.1.5
autodeskautocad_electrical>= 2021 < 2021.1.22021.1.2
autodeskautocad_electrical>= 2022 < 2022.1.22022.1.2
autodeskautocad_lt>= 2019 < 2019.1.42019.1.4
autodeskautocad_lt>= 2020 < 2020.1.52020.1.5
autodeskautocad_lt>= 2020 < 2020.3.22020.3.2
autodeskautocad_lt>= 2021 < 2021.1.22021.1.2
autodeskautocad_lt>= 2021 < 2021.2.22021.2.2