Vulnerability Details CVE-2023-29069
A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker can overwrite parts of the product with malicious DLLs. These files may then have elevated privileges leading to a Privilege Escalation vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.8%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2023-29069
-
cpe:2.3:a:autodesk:desktop_connector:14.13.0.1525
-
cpe:2.3:a:autodesk:desktop_connector:15.3.0.1657
-
cpe:2.3:a:autodesk:desktop_connector:15.4.0.1677
-
cpe:2.3:a:autodesk:desktop_connector:15.5.0.1684
-
cpe:2.3:a:autodesk:desktop_connector:15.6.0.1752
-
cpe:2.3:a:autodesk:desktop_connector:15.7.0.1767
-
cpe:2.3:a:autodesk:desktop_connector:15.7.1.1780
-
cpe:2.3:a:autodesk:desktop_connector:15.8.0.1827
-
cpe:2.3:a:autodesk:desktop_connector:16.0.0.1902
-
cpe:2.3:a:autodesk:desktop_connector:16.1.0.1935
-
cpe:2.3:a:autodesk:desktop_connector:16.1.1.1950
-
cpe:2.3:a:autodesk:desktop_connector:16.2.0.2007
-
cpe:2.3:a:autodesk:desktop_connector:16.2.1.2016