Description
Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0014
Scores
CVSS v3
7.8
EPSS
0.0006
EPSS Percentile
19.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-125
Status
published
Products (10)
autodesk/autocad
2023
autodesk/autocad_advance_steel
2023
autodesk/autocad_architecture
2023
autodesk/autocad_civil_3d
2023
autodesk/autocad_electrical
2023
autodesk/autocad_lt
2023
autodesk/autocad_map_3d
2023
autodesk/autocad_mechanical
2023
autodesk/autocad_mep
2023
autodesk/autocad_plant_3d
2023
Published
Jul 29, 2022
Tracked Since
Feb 18, 2026