Unrated severityNVD Advisory· Published Jun 25, 2021· Updated Aug 3, 2024

CVE-2021-27040

Description

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.

Affected products

N/a/Autodesk Advanced Steel, Civil 3d, Autocad, Autocad Lt, Autocad Architecture, Autocad Electrical, Autocad Map 3d, Autocad Mechanical, Autocad Mep, Autocad Plant 3dv5
Range: 2022, 2021, 2020, 2019

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.autodesk.com/trust/security-advisories/adsk-sa-2021-0004mitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-21-1236/mitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-21-1238/mitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-22-378/mitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-22-473/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000