Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

autodesk revit 2022 vulnerabilities and exploits

(subscribe to this query)
7.8
CVSSv3
CVE-2023-25002
A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.
Autodesk Navisworks 2022Autodesk Revit 2022Autodesk 3ds Max 2022Autodesk Navisworks 2023Autodesk 3ds Max 2023Autodesk Revit 2023Autodesk Vred 2023
7.8
CVSSv3
CVE-2022-27871
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron before 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Autocad Plant 3d 2019Autodesk Autocad Plant 3d 2020Autodesk Autocad Mep 2019Autodesk Autocad Mep 2020Autodesk Autocad Mechanical 2019Autodesk Autocad Mechanical 2020Autodesk Autocad Map 3d 2019Autodesk Autocad Map 3d 2020Autodesk Autocad Electrical 2019Autodesk Autocad Civil 3d 2019Autodesk Autocad Civil 3d 2020Autodesk Autocad Civil 3d 2021Autodesk Autocad Civil 3d 2022Autodesk Autocad Lt 2019Autodesk Autocad Lt 2020Autodesk Autocad Lt 2021Autodesk Autocad Lt 2022Autodesk Autocad Plant 3d 2021Autodesk Autocad Mep 2021Autodesk Autocad Mep 2022Autodesk Autocad Electrical 2020Autodesk Autocad Architecture 2019
7.8
CVSSv3
CVE-2021-40164
A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022Autodesk InventorAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Design Review 2018Autodesk Dwg TrueviewAutodesk NavisworksAutodesk Infraworks 2019.3Autodesk InfraworksAutodesk Infraworks 2020.2Autodesk Infraworks 2021.2Autodesk Infraworks 2022.0Autodesk Infraworks 2022.1Autodesk RevitAutodesk Autocad Civil 3dAutodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40165
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022Autodesk InventorAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Design Review 2018Autodesk Dwg TrueviewAutodesk NavisworksAutodesk Infraworks 2019.3Autodesk InfraworksAutodesk Infraworks 2020.2Autodesk Infraworks 2021.2Autodesk Infraworks 2022.0Autodesk Infraworks 2022.1Autodesk RevitAutodesk Autocad Civil 3dAutodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022Autodesk InventorAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Design Review 2018Autodesk Dwg TrueviewAutodesk NavisworksAutodesk Infraworks 2019.3Autodesk InfraworksAutodesk Infraworks 2020.2Autodesk Infraworks 2021.2Autodesk Infraworks 2022.0Autodesk Infraworks 2022.1Autodesk RevitAutodesk Autocad Civil 3dAutodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component.
Autodesk Revit 2022Autodesk InventorAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Design Review 2018Autodesk Dwg TrueviewAutodesk NavisworksAutodesk Infraworks 2019.3Autodesk InfraworksAutodesk Infraworks 2020.2Autodesk Infraworks 2021.2Autodesk Infraworks 2022.0Autodesk Infraworks 2022.1Autodesk RevitAutodesk Autocad Civil 3dAutodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40166
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by malicious users to execute arbitrary code.
Autodesk Revit 2022Autodesk InventorAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Design Review 2018Autodesk Dwg TrueviewAutodesk NavisworksAutodesk Infraworks 2019.3Autodesk InfraworksAutodesk Infraworks 2020.2Autodesk Infraworks 2021.2Autodesk Infraworks 2022.0Autodesk Infraworks 2022.1Autodesk RevitAutodesk Autocad Civil 3dAutodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40161
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version.
Autodesk RevitAutodesk NavisworksAutodesk Advance SteelAutodesk AutocadAutodesk Autocad ArchitectureAutodesk Autocad ElectricalAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk Autocad LtAutodesk Civil 3dAutodesk Autocad 2020Autodesk Autocad 2021Autodesk Autocad 2022Autodesk Autocad Lt 2021Autodesk Autocad Lt 2020Autodesk Design Review 2018
7.8
CVSSv3
CVE-2023-25003
A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / read vulnerabilities. Exploitation of this vulnerability may lead to code execution.
Autodesk AutocadAutodesk Autocad Advance SteelAutodesk Autocad ArchitectureAutodesk Autocad Civil 3dAutodesk Autocad ElectricalAutodesk Autocad LtAutodesk Autocad Map 3dAutodesk Autocad MechanicalAutodesk Autocad MepAutodesk Autocad Plant 3dAutodesk InfraworksAutodesk Maya UsdAutodesk NavisworksAutodesk InventorAutodesk VredAutodesk AliasAutodesk Revit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook