Code injection

2022-10-0718:15:00

PRIOn knowledge base

www.prio-n.com

autodesk

image processing

arbitrary code

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.4%

JSON

A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.

CPENameOperatorVersion
autocadge2022
autocadlt2022.1.2
autocadge2019
autocadlt2019.1.4
autocadge2020
autocadlt2020.1.5
autocadge2021
autocadlt2021.1.2
autocad_advance_steelge2022
autocad_advance_steellt2022.1.2

Name	Operator	Version
autocad	ge	2022
autocad	lt	2022.1.2
autocad	ge	2019
autocad	lt	2019.1.4
autocad	ge	2020
autocad	lt	2020.1.5
autocad	ge	2021
autocad	lt	2021.1.2
autocad_advance_steel	ge	2022
autocad_advance_steel	lt	2022.1.2