A maliciously crafted PKT file when consumed through SubassemblyComposer.exe application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
References
Link | Resource |
---|---|
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0019 | Not Applicable |
Configurations
Configuration 1 (hide)
|
History
18 Oct 2022, 17:55
Type | Values Removed | Values Added |
---|---|---|
First Time |
Autodesk
Autodesk subassembly Composer |
|
CPE | cpe:2.3:a:autodesk:subassembly_composer:2022:*:*:*:*:*:*:* cpe:2.3:a:autodesk:subassembly_composer:2023:*:*:*:*:*:*:* cpe:2.3:a:autodesk:subassembly_composer:2020:*:*:*:*:*:*:* cpe:2.3:a:autodesk:subassembly_composer:2021:*:*:*:*:*:*:* |
|
References | (MISC) https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0019 - Not Applicable | |
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
14 Oct 2022, 17:39
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-14 17:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-41305
Mitre link : CVE-2022-41305
CVE.ORG link : CVE-2022-41305
JSON object : View
Products Affected
autodesk
- subassembly_composer
CWE
CWE-787
Out-of-bounds Write