CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-27866

A maliciously crafted TIFF file when consumed through DesignReview.exe application can be forced to read beyond allocated boundaries when parsing the TIFF file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.0%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0009
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0009

Products affected by CVE-2022-27866

Autodesk » Design Review » Version: 2011

cpe:2.3:a:autodesk:design_review:2011
Autodesk » Design Review » Version: 2012

cpe:2.3:a:autodesk:design_review:2012
Autodesk » Design Review » Version: 2013

cpe:2.3:a:autodesk:design_review:2013
Autodesk » Design Review » Version: 2017

cpe:2.3:a:autodesk:design_review:2017
Autodesk » Design Review » Version: 2018

cpe:2.3:a:autodesk:design_review:2018

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27866

Products

Pricing

Contact Us