Inergency
An online hub for emergency and natural disaster solutions

NVD – CVE-2022-33886

7
NVD – CVE-2022-33886




CVE-2022-33886
Detail

Current Description

A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer while parsing through Autodesk AutoCAD 2023 and 2022. The vulnerability exists because the application fails to handle crafted MODEL and SLDPRT files, which causes an unhandled exception. An attacker can leverage this vulnerability to execute arbitrary code.


View Analysis Description

Severity


CVSS 3.x Severity and Metrics:

References to Advisories, Solutions, and Tools


By selecting these links, you will be leaving NIST webspace.
We have provided these links to other web sites because they
may have information that would be of interest to you. No
inferences should be drawn on account of other sites being
referenced, or not, from this page. There may be other web
sites that are more appropriate for your purpose. NIST does
not necessarily endorse the views expressed, or concur with
the facts presented on these sites. Further, NIST does not
endorse any commercial products that may be mentioned on
these sites. Please address comments about this page to nvd@nist.gov.

Weakness Enumeration









CWE-ID CWE Name Source

CWE-755
Improper Handling of Exceptional Conditions



NIST  

Change History

2 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2022-33886
NVD
Published Date:

10/03/2022
NVD
Last Modified:

10/05/2022

Source:

Autodesk


Comments are closed.