CVE-2021-40161 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.8 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
autodesk	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 20%

Vendor	Product	Version
autodesk	revit	𝑥 < 2020.2.5
autodesk	revit	2021 ≤ 𝑥 < 2021.1.6
autodesk	revit	2022 ≤ 𝑥 < 2022.1.2
autodesk	navisworks	𝑥 < 2019.6
autodesk	navisworks	2020 ≤ 𝑥 < 2020.4
autodesk	navisworks	2021 ≤ 𝑥 < 2021.3
autodesk	navisworks	2022 ≤ 𝑥 < 2022.2
autodesk	advance_steel	𝑥 < 2019.1.4
autodesk	advance_steel	2020 ≤ 𝑥 < 2020.1.5
autodesk	advance_steel	2021 ≤ 𝑥 < 2021.1.2
autodesk	advance_steel	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad	𝑥 < 2019.1.4
autodesk	autocad	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_architecture	𝑥 < 2019.1.4
autodesk	autocad_architecture	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_architecture	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_architecture	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_electrical	𝑥 < 2019.1.4
autodesk	autocad_electrical	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_electrical	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_electrical	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_map_3d	𝑥 < 2019.1.4
autodesk	autocad_map_3d	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_map_3d	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_map_3d	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_mechanical	𝑥 < 2019.1.4
autodesk	autocad_mechanical	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_mechanical	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_mechanical	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_mep	𝑥 < 2019.1.4
autodesk	autocad_mep	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_mep	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_mep	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_plant_3d	𝑥 < 2019.1.4
autodesk	autocad_plant_3d	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_plant_3d	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_plant_3d	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad_lt	𝑥 < 2019.1.4
autodesk	autocad_lt	2020 ≤ 𝑥 < 2020.1.5
autodesk	autocad_lt	2021 ≤ 𝑥 < 2021.1.2
autodesk	autocad_lt	2022 ≤ 𝑥 < 2022.1.2
autodesk	civil_3d	𝑥 < 2019.1.4
autodesk	civil_3d	2020 ≤ 𝑥 < 2020.1.5
autodesk	civil_3d	2021 ≤ 𝑥 < 2021.1.2
autodesk	civil_3d	2022 ≤ 𝑥 < 2022.1.2
autodesk	autocad	2022 < 𝑥 < 2022.2
autodesk	autocad_lt	2022 ≤ 𝑥 < 2022.2

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-787 - Out-of-bounds Write
The software writes data past the end, or before the beginning, of the intended buffer.

References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0010