cbcvebase.
CVE-2023-41140
published 2023-11-23

CVE-2023-41140: A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Affected

22 ranges
VendorProductVersion rangeFixed in
autodeskautocad< 2024.12024.1
autodeskautocad>= 2023.0.0 < 2023.1.42023.1.4
autodeskautocad>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_advance_steel< 2023.1.42023.1.4
autodeskautocad_advance_steel>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_architecture< 2023.1.42023.1.4
autodeskautocad_architecture>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_civil_3d< 2023.1.42023.1.4
autodeskautocad_civil_3d>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_electrical< 2023.1.42023.1.4
autodeskautocad_electrical>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_lt< 2023.1.42023.1.4
autodeskautocad_lt< 2024.12024.1
autodeskautocad_lt>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_map_3d< 2023.1.42023.1.4
autodeskautocad_map_3d>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_mechanical< 2023.1.42023.1.4
autodeskautocad_mechanical>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_mep< 2023.1.42023.1.4
autodeskautocad_mep>= 2024.0.0 < 2024.1.12024.1.1
autodeskautocad_plant_3d< 2023.1.42023.1.4
autodeskautocad_plant_3d>= 2024.0.0 < 2024.1.12024.1.1