VYPR

Dwg Trueview

by Autodesk

CVEs (15)

  • CVE-2025-1276Apr 15, 2025
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current…

  • CVE-2025-1275Apr 15, 2025
    risk 0.00cvss epss 0.00

    A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the…

  • CVE-2024-7992Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of…

  • CVE-2024-7991Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the…

  • CVE-2024-9997Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file when parsed in acdb25.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current…

  • CVE-2024-9996Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current…

  • CVE-2024-9489Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file when parsed in ACAD.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.

  • CVE-2024-8896Oct 29, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DXF file when parsed in acdb25.dll through Autodesk AutoCAD can force to access a variable prior to initialization. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the…

  • CVE-2024-7305Aug 19, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the…

  • CVE-2024-23138Mar 17, 2024
    risk 0.00cvss epss 0.00

    A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

  • CVE-2022-42945Dec 19, 2022
    risk 0.00cvss epss 0.00

    DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system.

  • CVE-2022-27524Apr 13, 2022
    risk 0.00cvss epss 0.01

    An out-of-bounds read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the…

  • CVE-2022-27523Apr 13, 2022
    risk 0.00cvss epss 0.01

    A buffer over-read can be exploited in Autodesk TrueView 2022 may lead to an exposure of sensitive information or a crash through using a maliciously crafted DWG file as an Input. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the…

  • CVE-2022-25795Apr 13, 2022
    risk 0.00cvss epss 0.02

    A Memory Corruption Vulnerability in Autodesk TrueView 2022 and 2021 may lead to remote code execution through maliciously crafted DWG files.

  • CVE-2013-3665Jul 18, 2013
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote attackers to execute arbitrary code via a crafted DWG file.