CVE-2022-25795

EUVD-2022-30435
A Memory Corruption Vulnerability in Autodesk TrueView 2022 and 2021 may lead to remote code execution through maliciously crafted DWG files.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
Affected Products (NVD)
VendorProductVersion
autodeskautocad
𝑥
< 2019.1.4
autodeskautocad
2020 ≤
𝑥
< 2020.1.5
autodeskautocad
2021 ≤
𝑥
< 2021.1.2
autodeskautocad
2022 ≤
𝑥
< 2022.1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0010%3B
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0007
https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0010%3B
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0007