A maliciously crafted CATPART, STP, and MODEL file, when...
High severity
Unreviewed
Published
Jun 25, 2024
to the GitHub Advisory Database
•
Updated Jul 3, 2024
Description
Published by the National Vulnerability Database
Jun 25, 2024
Published to the GitHub Advisory Database
Jun 25, 2024
Last updated
Jul 3, 2024
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.
References