← Back

CVE-2021-40159

nvd nist
Published: Jan 25, 2022Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnerabilities may lead to code execution through maliciously crafted JT files in the context of the current process.

Affected (14)

Autodesk
11 products
Advance Steel
Autocad
Autocad Architecture
Autocad Electrical
Autocad Lt
Autocad Map 3d
Autocad Mechanical
Autocad Mep
Autocad Plant 3d
Civil 3d
Inventor
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Advance Steel
From 2022 to 2022.1.2
Autocad
From 2022 to 2022.1.2
Autocad Architecture
From 2022 to 2022.1.2
Autocad Electrical
From 2022 to 2022.1.2
Autocad Lt
From 2022 to 2022.1.2
Autocad Map 3d
From 2022 to 2022.1.2
Autocad Mechanical
From 2022 to 2022.1.2
Autocad Mep
From 2022 to 2022.1.2
Autocad Plant 3d
From 2022 to 2022.1.2
Civil 3d
From 2022 to 2022.1.2
Autodesk
Inventor
Version 2019
Inventor
Version 2020
Inventor
Version 2021
Inventor
Version 2022

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

Source: psirt@autodesk.com
Vendor Advisory
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: psirt@autodesk.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.