cbcvebase.
CVE-2024-7305
published 2024-08-20

CVE-2024-7305: A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may…

high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

Affected

43 ranges· showing 25
VendorProductVersion rangeFixed in
autodeskadvance_steel>= 2022 < 2022.1.62022.1.6
autodeskadvance_steel>= 2023 < 2023.1.72023.1.7
autodeskadvance_steel>= 2024 < 2024.1.62024.1.6
autodeskadvance_steel>= 2025 < 2025.12025.1
autodeskautocad>= 2022 < 2022.1.62022.1.6
autodeskautocad>= 2023 < 2023.1.72023.1.7
autodeskautocad>= 2024 < 2024.1.62024.1.6
autodeskautocad>= 2025 < 2025.12025.1
autodeskautocad_architecture>= 2022 < 2022.1.62022.1.6
autodeskautocad_architecture>= 2023 < 2023.1.72023.1.7
autodeskautocad_architecture>= 2024 < 2024.1.62024.1.6
autodeskautocad_architecture>= 2025 < 2025.12025.1
autodeskautocad_electrical>= 2022 < 2022.1.62022.1.6
autodeskautocad_electrical>= 2023 < 2023.1.72023.1.7
autodeskautocad_electrical>= 2024 < 2024.1.62024.1.6
autodeskautocad_electrical>= 2025 < 2025.12025.1
autodeskautocad_lt>= 2022 < 2022.1.62022.1.6
autodeskautocad_lt>= 2023 < 2023.1.72023.1.7
autodeskautocad_lt>= 2024 < 2024.1.62024.1.6
autodeskautocad_lt>= 2025 < 2025.12025.1
autodeskautocad_map_3d>= 2022 < 2022.1.62022.1.6
autodeskautocad_map_3d>= 2023 < 2023.1.72023.1.7
autodeskautocad_map_3d>= 2024 < 2024.1.62024.1.6
autodeskautocad_map_3d>= 2025 < 2025.12025.1
autodeskautocad_mechanical>= 2022 < 2022.1.62022.1.6