CVE-2022-41306

A maliciously crafted PCT file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:autodesk:design_review:2018:-:*:*:*:*:*:*

History

19 Oct 2022, 06:17

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
References (MISC) https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0022 - (MISC) https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0022 - Patch, Vendor Advisory
First Time Autodesk
Autodesk design Review
CWE CWE-787
CPE cpe:2.3:a:autodesk:design_review:2018:-:*:*:*:*:*:*

14 Oct 2022, 17:39

Type Values Removed Values Added
New CVE

Information

Published : 2022-10-14 17:15

Updated : 2023-12-10 14:35


NVD link : CVE-2022-41306

Mitre link : CVE-2022-41306

CVE.ORG link : CVE-2022-41306


JSON object : View

Products Affected

autodesk

  • design_review
CWE
CWE-787

Out-of-bounds Write