← Back

CVE-2021-40164

nvd nist
Published: Oct 7, 2022Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.

Affected (88)

Autodesk
19 products
Autocad
Autocad Advance Steel
Autocad Architecture
Autocad Civil 3d
Autocad Electrical
Autocad Lt
Autocad Map 3d
Autocad Mechanical
Autocad Mep
Autocad Plant 3d
Design Review
Dwg Trueview
Fusion
Infrastructure Parts Editor
Infraworks
Inventor
Navisworks
Revit
Storm And Sanitary Analysis
Configuration A
88 vulnerable
Vulnerable SoftwareAffected Versions
Autodesk
Autocad
From 2019 to 2019.1.4
Autocad
From 2020 to 2020.1.5
Autocad
From 2021 to 2021.1.2
Autocad
From 2022 to 2022.1.2
Autodesk
Autocad Advance Steel
From 2019 to 2019.1.4
Autocad Advance Steel
From 2020 to 2020.1.5
Autocad Advance Steel
From 2021 to 2021.1.2
Autocad Advance Steel
From 2022 to 2022.1.2
Autodesk
Autocad Architecture
From 2019 to 2019.1.4
Autocad Architecture
From 2020 to 2020.1.5
Autocad Architecture
From 2021 to 2021.1.2
Autocad Architecture
From 2022 to 2022.1.2
Autodesk
Autocad Civil 3d
From 2019 to 2019.1.4
Autocad Civil 3d
From 2020 to 2020.1.5
Autocad Civil 3d
From 2021 to 2021.1.2
Autocad Civil 3d
From 2022 to 2022.1.2
Autodesk
Autocad Electrical
From 2019 to 2019.1.4
Autocad Electrical
From 2020 to 2020.1.5
Autocad Electrical
From 2021 to 2021.1.2
Autocad Electrical
From 2022 to 2022.1.2
Autodesk
Autocad Lt
From 2019 to 2019.1.4
Autocad Lt
From 2020 to 2020.1.5
Autocad Lt
From 2021 to 2021.1.2
Autocad Lt
From 2022 to 2022.1.2
Autocad Lt
From 2020 to 2020.3.2
Autocad Lt
From 2021 to 2021.2.2
Autocad Lt
From 2022 to 2022.2.2
Autodesk
Autocad Map 3d
From 2019 to 2019.1.4
Autocad Map 3d
From 2020 to 2020.1.5
Autocad Map 3d
From 2021 to 2021.1.2
Autocad Map 3d
From 2022 to 2022.1.2
Autodesk
Autocad Mechanical
From 2019 to 2019.1.4
Autocad Mechanical
From 2020 to 2020.1.5
Autocad Mechanical
From 2021 to 2021.1.2
Autocad Mechanical
From 2022 to 2022.1.2
Autodesk
Autocad Mep
From 2019 to 2019.1.4
Autocad Mep
From 2020 to 2020.1.5
Autocad Mep
From 2021 to 2021.1.2
Autocad Mep
From 2022 to 2022.1.2
Autodesk
Autocad Plant 3d
From 2019 to 2019.1.4
Autocad Plant 3d
From 2020 to 2020.1.5
Autocad Plant 3d
From 2021 to 2021.1.2
Autocad Plant 3d
From 2022 to 2022.1.2
Autodesk
Design Review
Version 2018
Design Review
Version 2018 hotfix2
Design Review
Version 2018 hotfix3
Design Review
Version 2018 hotfix
Autodesk
Dwg Trueview
From 2019 to 2019.1.4
Dwg Trueview
From 2020 to 2020.1.5
Dwg Trueview
From 2021 to 2021.1.2
Dwg Trueview
From 2022 to 2022.1.1
Fusion
From 2.0.10356 to 2.0.11405
Autodesk
Infrastructure Parts Editor
From 2019 to 2019.2.2
Infrastructure Parts Editor
From 2020 to 2020.0.2
Infrastructure Parts Editor
Version 2021
Infrastructure Parts Editor
Version 2022
Autodesk
Infraworks
From 2019 to 2019.3
Infraworks
From 2020 to 2020.2
Infraworks
From 2021 to 2021.2
Infraworks
Version 2019.3
Infraworks
Version 2019.3 hotfix_1
Infraworks
Version 2019.3 hotfix_2
Infraworks
Version 2019.3 hotfix_3
Infraworks
Version 2020.2
Infraworks
Version 2020.2 hotfix_1
Infraworks
Version 2020.2 hotfix_2
Infraworks
Version 2021.2
Infraworks
Version 2021.2 hotfix_1
Infraworks
Version 2021.2 hotfix_2
Infraworks
Version 2022.0
Infraworks
Version 2022.0 hotfix_1
Infraworks
Version 2022.1
Autodesk
Inventor
From 2019 to 2019.6
Inventor
From 2020 to 2020.5
Inventor
From 2021 to 2021.4
Inventor
From 2022 to 2022.2
Autodesk
Navisworks
From 2019 to 2019.7
Navisworks
From 2020 to 2020.5
Navisworks
From 2021 to 2021.4
Navisworks
From 2022 to 2022.2
Autodesk
Revit
From 2019 to 2019.2.4
Revit
From 2020 to 2020.2.6
Revit
From 2021 to 2021.1.5
Revit
Version 2022
Autodesk
Storm And Sanitary Analysis
From 2020 to 2020.3.1
Storm And Sanitary Analysis
From 2021 to 2021.3.1
Storm And Sanitary Analysis
Version 2019
Storm And Sanitary Analysis
Version 2022

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

Source: psirt@autodesk.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.