A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
[
{
"cpes": [
"cpe:2.3:a:autodesk:autocad:2024:*:*:*:*:*:*:*"
],
"vendor": "autodesk",
"product": "autocad",
"versions": [
{
"status": "affected",
"version": "2024"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:autodesk:advance_steel:2024:*:*:*:*:*:*:*"
],
"vendor": "autodesk",
"product": "advance_steel",
"versions": [
{
"status": "affected",
"version": "2024"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:autodesk:civil_3d:2024:*:*:*:*:*:*:*"
],
"vendor": "autodesk",
"product": "civil_3d",
"versions": [
{
"status": "affected",
"version": "2024"
}
],
"defaultStatus": "unknown"
}
]