← Back

CVE-2021-27034

nvd nist
Published: Jul 9, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

A heap-based buffer overflow could occur while parsing PICT, PCX, RCL or TIFF files in Autodesk Design Review 2018, 2017, 2013, 2012, 2011. This vulnerability can be exploited to execute arbitrary code.

Affected (5)

Autodesk
1 product
Design Review
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Autodesk
Design Review
Version 2011
Design Review
Version 2012
Design Review
Version 2013
Design Review
Version 2017
Design Review
Version 2018

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (18)

Source: psirt@autodesk.com
Vendor Advisory
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.