CVE-2022-27524
published 2022-04-13CVE-2022-27524: An out-of-bounds read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously…
high7.1CVSS 3.1
AVLACLPRNUIRSUCHINAH
An out-of-bounds read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| autodesk | dwg_trueview | >= 2019 < 2019.1.4 | 2019.1.4 |
| autodesk | dwg_trueview | >= 2020 < 2020.1.5 | 2020.1.5 |
| autodesk | dwg_trueview | >= 2021 < 2021.1.2 | 2021.1.2 |
| autodesk | dwg_trueview | >= 2022 < 2022.1.2 | 2022.1.2 |