CVE-2022-33885
published 2022-10-03CVE-2022-33885: A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the allocated buffer. This…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the allocated buffer. This vulnerability can lead to arbitrary code execution.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| autodesk | autocad | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_advance_steel | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_advance_steel | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_architecture | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_architecture | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_civil_3d | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_civil_3d | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_electrical | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_electrical | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_lt | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_lt | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_map_3d | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_map_3d | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_mechanical | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_mechanical | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_mep | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_mep | >= 2023 < 2023.1.1 | 2023.1.1 |
| autodesk | autocad_plant_3d | >= 2022 < 2022.1.3 | 2022.1.3 |
| autodesk | autocad_plant_3d | >= 2023 < 2023.1.1 | 2023.1.1 |