CVE-2021-27043
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD
Description
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application.
Affected (41)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2019 to 2019.1.3 | |
| From 2022 to 2022.1.1 |
References (2)
Source: psirt@autodesk.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.