Known Vulnerabilities for products from Autodesk

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Autodesk".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-33881 Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerabilit... 7.8 - HIGH 2022-07-29 2022-07-29
CVE-2022-27873 An attacker can force the victim’s device to perform arbitrary HTTP requests in WAN through a malicious SVG file being pars... 7.8 - HIGH 2022-07-29 2022-07-29
CVE-2022-27872 A maliciously crafted PDF file may be used to dereference a pointer for read or write operation while parsing PDF files in Au... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27871 Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be use... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27870 A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA fi... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27869 A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when par... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27868 A maliciously crafted CAT file in Autodesk AutoCAD 2023 can be used to trigger use-after-free vulnerability. Exploitation of ... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27867 A maliciously crafted JT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability.... 7.8 - HIGH 2022-06-21 2022-06-21
CVE-2022-27532 A maliciously crafted TIF file in Autodesk 3ds Max 2022 and 2021 can be used to write beyond the allocated buffer while parsi... 7.8 - HIGH 2022-06-16 2022-06-16
CVE-2022-27531 A maliciously crafted TIF file can be forced to read beyond allocated boundaries in Autodesk 3ds Max 2022, and 2021 when pars... 7.8 - HIGH 2022-06-16 2022-06-16
CVE-2021-40167 A Memory Corruption Vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 and prior may lead to remote code ex... 7.8 - HIGH 2022-01-25 2022-07-01
CVE-2021-40161 A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDF earlier than 9... 7.8 - HIGH 2021-12-23 2022-06-05
CVE-2021-40160 A maliciously crafted PDF file prior to 9.0.7 may be forced to read beyond allocated boundaries when parsing the PDF file. Th... 7.8 - HIGH 2021-12-23 2022-05-01
CVE-2021-40159 An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 may lead to code execution t... 7.8 - HIGH 2022-01-25 2022-02-28
CVE-2021-40158 A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 may be forced to read beyond allocated boundaries w... 7.8 - HIGH 2022-01-25 2022-05-13
CVE-2021-40157 A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer Dereference vulnerability in F... 7.8 - HIGH 2021-09-15 2022-06-16
CVE-2021-40156 A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to write beyond allocated boundari... 7.8 - HIGH 2021-09-15 2021-09-28
CVE-2021-40155 A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to read beyond allocated boundarie... 7.8 - HIGH 2021-09-15 2021-09-28
CVE-2021-27046 A Memory Corruption vulnerability for PDF files in Autodesk Navisworks 2019, 2020, 2021, 2022 may lead to code execution thro... 7.8 - HIGH 2021-09-15 2021-09-28
CVE-2021-27045 A maliciously crafted PDF file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to read beyond allocated boundarie... 7.8 - HIGH 2021-09-15 2021-09-28

Known software with vulnerabilities from Autodesk

Type Vendor Product Version
ApplicationAutodesk3ds Max-
ApplicationAutodeskArchitectural Desktop-
ApplicationAutodeskAutocad-
ApplicationAutodeskAutocad Architecture 20095.7.68.0
ApplicationAutodeskAutocad Architecture 20106.0.56.0
ApplicationAutodeskAutocad Architecture 2010 Language Pack18.0.55.0
ApplicationAutodeskAutocad Architecture 20116.5.49.0
ApplicationAutodeskAutocad Architecture 2011 Language Pack18.1.49.0
ApplicationAutodeskAutocad Architecture 20126.7.49.0
ApplicationAutodeskAutocad Architecture 2012 Language Pack18.2.51.0
ApplicationAutodeskAutocad Civil 3d-
ApplicationAutodeskAutocad Electrical-
ApplicationAutodeskAutocad Lt-
ApplicationAutodeskAutocad Lt 2010 Language Pack18.0.59.0
ApplicationAutodeskAutocad Lt 2011 Language Pack18.1.49.0
ApplicationAutodeskAutocad Lt 2012 Language Pack18.2.51.0
ApplicationAutodeskAutocad Map 3d 200912.0.048.0
ApplicationAutodeskAutocad Mechanical-
ApplicationAutodeskAutodesk-
ApplicationAutodeskAutodesk Backburner2016.0.0.2150
Trademarks for Autodesk obtained from uspto.report
Mark Image Details
DWGX
"DWGX"
78852849
DWGX
Autodesk
2006-04-03

Popular searches for "Autodesk"

Autodesk Company

Autodesk, Inc. is an American multinational software corporation that makes software products and services for the architecture, engineering, construction, manufacturing, media, education, and entertainment industries. Autodesk is headquartered in San Rafael, California, and features a gallery of its customers' work in its San Francisco building. The company has offices worldwide. Its U.S. locations are California, Oregon, Colorado, Texas, Michigan, New Hampshire and Massachusetts.

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report