CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-27525

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004

Products affected by CVE-2022-27525

Autodesk » Design Review » Version: 2011

cpe:2.3:a:autodesk:design_review:2011
Autodesk » Design Review » Version: 2012

cpe:2.3:a:autodesk:design_review:2012
Autodesk » Design Review » Version: 2013

cpe:2.3:a:autodesk:design_review:2013
Autodesk » Design Review » Version: 2017

cpe:2.3:a:autodesk:design_review:2017
Autodesk » Design Review » Version: 2018

cpe:2.3:a:autodesk:design_review:2018

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27525

Products

Pricing

Contact Us