CVE-2022-25788
HIGHAutodesk AutoCAD 2022 - Out-of-bounds Write via JT File Parsing
Title source: llmDescription
A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated buffer while parsing JT files. This vulnerability can be exploited to execute arbitrary code.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0002
Scores
CVSS v3
7.8
EPSS
0.0042
EPSS Percentile
62.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (13)
autodesk/advance_steel
2022 - 2022.1.2
autodesk/autocad
2022 - 2022.1.2
autodesk/autocad
2022 - 2022.2.2
autodesk/autocad_architecture
2022 - 2022.1.2
autodesk/autocad_electrical
2022 - 2022.1.2
autodesk/autocad_lt
2022 - 2022.1.2
autodesk/autocad_lt
2022 - 2022.2.2
autodesk/autocad_map_3d
2022 - 2022.1.2
autodesk/autocad_mechanical
2022 - 2022.1.2
autodesk/autocad_mep
2022 - 2022.1.2
... and 3 more
Published
Apr 19, 2022
Tracked Since
Feb 18, 2026