Unrated severityNVD Advisory· Published Apr 9, 2019· Updated Aug 4, 2024

CVE-2019-7358

Description

An exploitable heap overflow vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018, Autodesk AutoCAD P&ID 2018, Autodesk AutoCAD Plant 3D 2018, Autodesk AutoCAD LT 2018, and Autodesk Civil 3D 2018. A specially crafted DXF file may cause a heap overflow, resulting in code execution.

Affected products

Autodesk/Advance Steelllm-fuzzy2 versions
= 2018+ 1 more
- (no CPE)range: = 2018
- (no CPE)range: 2018
Autodesk/Civil 3Dllm-fuzzy
Range: = 2018
Autodesk/Autocadllm-fuzzy2 versions
= 2018+ 1 more
- (no CPE)range: = 2018
- (no CPE)range: 2018
Autodesk/Autocad Architecturecpe-rescue
Range: 2018
Autodesk/Autocad Electricalcpe-rescue
Range: 2018
Autodesk/Autocad Ltcpe-rescue
Range: 2018
Autodesk/Autocad Map 3dcpe-rescue
Range: 2018
Autodesk/Autocad Mechanicalcpe-rescue
Range: 2018
Autodesk/Autocad Mepcpe-rescue
Range: 2018
Autodesk/Autocad P\&idcpe-rescue
Range: 2018
Autodesk/Autocad Plant 3dcpe-rescue
Range: 2018
Autodesk/Autocad Civil 3dcpe-rescue
Range: 2018

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.autodesk.com/trust/security-advisories/adsk-sa-2019-0001mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000