CVE-2023-41139
published 2023-11-23CVE-2023-41139: A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.
Affected
22 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| autodesk | autocad | < 2024.1 | 2024.1 |
| autodesk | autocad | >= 2023.0.0 < 2023.1.4 | 2023.1.4 |
| autodesk | autocad | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_advance_steel | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_advance_steel | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_architecture | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_architecture | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_civil_3d | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_civil_3d | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_electrical | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_electrical | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_lt | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_lt | < 2024.1 | 2024.1 |
| autodesk | autocad_lt | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_map_3d | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_map_3d | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_mechanical | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_mechanical | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_mep | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_mep | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |
| autodesk | autocad_plant_3d | < 2023.1.4 | 2023.1.4 |
| autodesk | autocad_plant_3d | >= 2024.0.0 < 2024.1.1 | 2024.1.1 |