Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autodesk vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-27037
A maliciously crafted PNG, PDF or DWF file in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by remote malicious actors to execute arbitrary code.
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2011
Autodesk Design Review 2017
Autodesk Design Review 2018
7.8
CVSSv3
CVE-2021-27038
A Type Confusion vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can occur when processing a maliciously crafted PDF file. A malicious actor can leverage this to execute arbitrary code.
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2018
Autodesk Design Review 2011
Autodesk Design Review 2017
7.8
CVSSv3
CVE-2022-27526
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
Autodesk Design Review 2011
Autodesk Design Review 2012
Autodesk Design Review 2013
Autodesk Design Review 2017
Autodesk Design Review 2018
1 Article
7.8
CVSSv3
CVE-2022-27525
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the curren...
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2011
Autodesk Design Review 2017
Autodesk Design Review 2018
1 Article
7.8
CVSSv3
CVE-2021-27033
A Double Free vulnerability allows remote malicious users to execute arbitrary code on PDF files within affected installations of Autodesk Design Review 2018, 2017, 2013, 2012, 2011. User interaction is required to exploit this vulnerability in that the target must visit a malici...
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2018
Autodesk Design Review 2011
Autodesk Design Review 2017
8.8
CVSSv3
CVE-2022-27864
A Double Free vulnerability allows remote malicious users to execute arbitrary code through DesignReview.exe application on PDF files within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...
Autodesk Design Review 2018
Autodesk Design Review 2017
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2011
7.8
CVSSv3
CVE-2022-27865
A maliciously crafted TGA or PCX file may be used to write beyond the allocated buffer through DesignReview.exe application while parsing TGA and PCX files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Design Review 2018
Autodesk Design Review 2017
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2011
7.8
CVSSv3
CVE-2022-27866
A maliciously crafted TIFF file when consumed through DesignReview.exe application can be forced to read beyond allocated boundaries when parsing the TIFF file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current...
Autodesk Design Review 2018
Autodesk Design Review 2017
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2011
7.8
CVSSv3
CVE-2019-7365
DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and previous versions. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the sys...
Autodesk Autodesk Desktop
1 Github repository
7.5
CVSSv3
CVE-2016-2344
Stack-based buffer overflow in manager.exe in Backburner Manager in Autodesk Backburner 2016 2016.0.0.2150 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a crafted command. NOTE: this is only a vulnera...
Autodesk Autodesk Backburner
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »