Vulnerability Details CVE-2022-25790
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2022-25790
-
cpe:2.3:a:autodesk:advance_steel:2019
-
cpe:2.3:a:autodesk:advance_steel:2019.1.3
-
cpe:2.3:a:autodesk:advance_steel:2020
-
cpe:2.3:a:autodesk:advance_steel:2020.1.4
-
cpe:2.3:a:autodesk:advance_steel:2021
-
cpe:2.3:a:autodesk:advance_steel:2021.1.1
-
cpe:2.3:a:autodesk:advance_steel:2022
-
cpe:2.3:a:autodesk:advance_steel:2022.0.1
-
cpe:2.3:a:autodesk:autocad:2019
-
cpe:2.3:a:autodesk:autocad:2019.1.3
-
cpe:2.3:a:autodesk:autocad:2020
-
cpe:2.3:a:autodesk:autocad:2020.1.4
-
cpe:2.3:a:autodesk:autocad:2021
-
cpe:2.3:a:autodesk:autocad:2021.1.1
-
cpe:2.3:a:autodesk:autocad:2022
-
cpe:2.3:a:autodesk:autocad:2022.0.1
-
cpe:2.3:a:autodesk:autocad:2022.1
-
cpe:2.3:a:autodesk:autocad_architecture:2019
-
cpe:2.3:a:autodesk:autocad_architecture:2019.1.3
-
cpe:2.3:a:autodesk:autocad_architecture:2020
-
cpe:2.3:a:autodesk:autocad_architecture:2020.1.4
-
cpe:2.3:a:autodesk:autocad_architecture:2021
-
cpe:2.3:a:autodesk:autocad_architecture:2021.1.1
-
cpe:2.3:a:autodesk:autocad_architecture:2022
-
cpe:2.3:a:autodesk:autocad_architecture:2022.0.1
-
cpe:2.3:a:autodesk:autocad_electrical:2019
-
cpe:2.3:a:autodesk:autocad_electrical:2019.1.3
-
cpe:2.3:a:autodesk:autocad_electrical:2020
-
cpe:2.3:a:autodesk:autocad_electrical:2020.1.4
-
cpe:2.3:a:autodesk:autocad_electrical:2021
-
cpe:2.3:a:autodesk:autocad_electrical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_electrical:2022
-
cpe:2.3:a:autodesk:autocad_electrical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_lt:2019
-
cpe:2.3:a:autodesk:autocad_lt:2019.1.3
-
cpe:2.3:a:autodesk:autocad_lt:2020
-
cpe:2.3:a:autodesk:autocad_lt:2020.1.4
-
cpe:2.3:a:autodesk:autocad_lt:2021
-
cpe:2.3:a:autodesk:autocad_lt:2021.1.1
-
cpe:2.3:a:autodesk:autocad_lt:2022
-
cpe:2.3:a:autodesk:autocad_lt:2022.0.1
-
cpe:2.3:a:autodesk:autocad_lt:2022.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2019
-
cpe:2.3:a:autodesk:autocad_map_3d:2019.1.3
-
cpe:2.3:a:autodesk:autocad_map_3d:2020
-
cpe:2.3:a:autodesk:autocad_map_3d:2020.1.4
-
cpe:2.3:a:autodesk:autocad_map_3d:2021
-
cpe:2.3:a:autodesk:autocad_map_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2022
-
cpe:2.3:a:autodesk:autocad_map_3d:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2019
-
cpe:2.3:a:autodesk:autocad_mechanical:2019.1.3
-
cpe:2.3:a:autodesk:autocad_mechanical:2020
-
cpe:2.3:a:autodesk:autocad_mechanical:2020.1.4
-
cpe:2.3:a:autodesk:autocad_mechanical:2021
-
cpe:2.3:a:autodesk:autocad_mechanical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2022
-
cpe:2.3:a:autodesk:autocad_mechanical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mep:2019
-
cpe:2.3:a:autodesk:autocad_mep:2019.1.3
-
cpe:2.3:a:autodesk:autocad_mep:2020
-
cpe:2.3:a:autodesk:autocad_mep:2020.1.4
-
cpe:2.3:a:autodesk:autocad_mep:2021
-
cpe:2.3:a:autodesk:autocad_mep:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mep:2022
-
cpe:2.3:a:autodesk:autocad_mep:2022.0.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2019
-
cpe:2.3:a:autodesk:autocad_plant_3d:2019.1.3
-
cpe:2.3:a:autodesk:autocad_plant_3d:2020
-
cpe:2.3:a:autodesk:autocad_plant_3d:2020.1.4
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022.0.1
-
cpe:2.3:a:autodesk:civil_3d:2019
-
cpe:2.3:a:autodesk:civil_3d:2019.1.3
-
cpe:2.3:a:autodesk:civil_3d:2020
-
cpe:2.3:a:autodesk:civil_3d:2020.1.4
-
cpe:2.3:a:autodesk:civil_3d:2021
-
cpe:2.3:a:autodesk:civil_3d:2021.1.1
-
cpe:2.3:a:autodesk:civil_3d:2022
-
cpe:2.3:a:autodesk:civil_3d:2022.0.1
-
cpe:2.3:a:autodesk:civil_3d:2022.1.1
-
cpe:2.3:a:autodesk:navisworks:2022
-
cpe:2.3:a:autodesk:navisworks:2022.1