A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled exception. An attacker can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process.
Weakness
The product does not handle or incorrectly handles an exceptional condition.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Autocad | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_advance_steel | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_advance_steel | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_architecture | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_architecture | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_civil_3d | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_civil_3d | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_electrical | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_electrical | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_lt | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_lt | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_map_3d | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_map_3d | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_mechanical | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_mechanical | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_mep | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_mep | Autodesk | 2023 (including) | 2023.1.1 (excluding) |
| Autocad_plant_3d | Autodesk | 2022 (including) | 2022.1.3 (excluding) |
| Autocad_plant_3d | Autodesk | 2023 (including) | 2023.1.1 (excluding) |