VYPR

Vendor CVEs

Autodesk

All CVEs

319 total · sorted by risk
  • CVE-2019-7363Aug 23, 2019
    risk 0.00cvss epss 0.01

    Use-after-free vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a use-after-free vulnerability, which may result in code execution.

  • CVE-2019-7362Aug 23, 2019
    risk 0.00cvss epss 0.01

    DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a DLL preloading vulnerability, which may result in code execution.

  • CVE-2019-7359Apr 9, 2019
    risk 0.00cvss epss 0.02

    An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk…

  • CVE-2019-7358Apr 9, 2019
    risk 0.00cvss epss 0.02

    An exploitable heap overflow vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk…

  • CVE-2019-7361Apr 9, 2019
    risk 0.00cvss epss 0.01

    An attacker may convince a victim to open a malicious action micro (.actm) file that has serialized data, which may trigger a code execution in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk…

  • CVE-2019-7360Apr 9, 2019
    risk 0.00cvss epss 0.02

    An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk…

  • CVE-2015-8572Dec 15, 2015
    risk 0.00cvss epss 0.04

    Multiple buffer overflows in Autodesk Design Review (ADR) before 2013 Hotfix 2 allow remote attackers to execute arbitrary code via crafted RLE data in a (1) BMP or (2) FLI file, (3) encoded scan lines in a PCX file, or (4) DataSubBlock or (5) GlobalColorTable in a GIF file.

  • CVE-2015-8571Dec 15, 2015
    risk 0.00cvss epss 0.03

    Integer overflow in Autodesk Design Review (ADR) before 2013 Hotfix 2 allows remote attackers to execute arbitrary code via a crafted biClrUsed value in a BMP file, which triggers a buffer overflow.

  • CVE-2014-9268Dec 8, 2014
    risk 0.00cvss epss 0.05

    The AdView.AdViewer.1 ActiveX control in Autodesk Design Review (ADR) before 2013 Hotfix 1 allows remote attackers to execute arbitrary code via a crafted DWF file.

  • CVE-2014-3939Jul 23, 2014
    risk 0.00cvss epss 0.06

    Heap-based buffer overflow in Autodesk SketchBook Pro before 6.2.6 allows remote attackers to execute arbitrary code via crafted layer bitmap data in a PXD file.

  • CVE-2014-3938Jul 23, 2014
    risk 0.00cvss epss 0.04

    Integer overflow in Autodesk SketchBook Pro before 6.2.6 allows remote attackers to execute arbitrary code via crafted layer mask data in a PSD file, which triggers a heap-based buffer overflow.

  • CVE-2014-2967Jul 7, 2014
    risk 0.00cvss epss 0.05

    Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server.

  • CVE-2013-5365Apr 2, 2014
    risk 0.00cvss epss 0.05

    Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compressed channel data in a PSD file.

  • CVE-2014-0819Feb 22, 2014
    risk 0.00cvss epss 0.00

    Untrusted search path vulnerability in Autodesk AutoCAD before 2014 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

  • CVE-2014-0818Feb 22, 2014
    risk 0.00cvss epss 0.02

    Untrusted search path vulnerability in Autodesk AutoCAD before 2014 allows local users to gain privileges and execute arbitrary VBScript code via a Trojan horse FAS file in the FAS file search path.

  • CVE-2013-3665Jul 18, 2013
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote attackers to execute arbitrary code via a crafted DWG file.

  • CVE-2010-5226Sep 7, 2012
    risk 0.00cvss epss 0.00

    Multiple untrusted search path vulnerabilities in Autodesk Design Review 2011 11.0.0.86 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll, (2) whiptk_wt.7.12.601.dll, or (3) xaml_wt.7.6.0.dll file in the current working directory, as demonstrated by a…

  • CVE-2007-4749Sep 14, 2007
    risk 0.00cvss epss 0.02

    The cmdjob utility in Autodesk Backburner 3.0.2 allows remote attackers to execute arbitrary commands on render servers by queueing jobs that contain these commands. NOTE: this is only a vulnerability in environments in which the administrator has not followed documentation…

  • CVE-2005-4710Dec 31, 2005
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in multiple Autodesk and AutoCAD products and product families from 2006 and earlier allows remote attackers to "gain inappropriate access to another local user's computer," aka ID DL5549329.

Page 7 of 7