Vulnerability Details CVE-2024-23122
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.8%
CVSS Severity
CVSS v3 Score 7.8
References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009
Products affected by CVE-2024-23122
-
cpe:2.3:a:autodesk:advance_steel:2021
-
cpe:2.3:a:autodesk:advance_steel:2021.1.1
-
cpe:2.3:a:autodesk:advance_steel:2021.1.2
-
cpe:2.3:a:autodesk:advance_steel:2022
-
cpe:2.3:a:autodesk:advance_steel:2022.0.1
-
cpe:2.3:a:autodesk:advance_steel:2022.1.2
-
cpe:2.3:a:autodesk:advance_steel:2023
-
cpe:2.3:a:autodesk:advance_steel:2024
-
cpe:2.3:a:autodesk:advance_steel:2025
-
cpe:2.3:a:autodesk:autocad:2021
-
cpe:2.3:a:autodesk:autocad:2021.1.1
-
cpe:2.3:a:autodesk:autocad:2021.1.2
-
cpe:2.3:a:autodesk:autocad:2022
-
cpe:2.3:a:autodesk:autocad:2022.0.1
-
cpe:2.3:a:autodesk:autocad:2022.1
-
cpe:2.3:a:autodesk:autocad:2022.1.2
-
cpe:2.3:a:autodesk:autocad:2023
-
cpe:2.3:a:autodesk:autocad:2024
-
cpe:2.3:a:autodesk:autocad:2025
-
cpe:2.3:a:autodesk:autocad_architecture:2021
-
cpe:2.3:a:autodesk:autocad_architecture:2021.1.1
-
cpe:2.3:a:autodesk:autocad_architecture:2021.1.2
-
cpe:2.3:a:autodesk:autocad_architecture:2022
-
cpe:2.3:a:autodesk:autocad_architecture:2022.0.1
-
cpe:2.3:a:autodesk:autocad_architecture:2022.1.2
-
cpe:2.3:a:autodesk:autocad_architecture:2023
-
cpe:2.3:a:autodesk:autocad_architecture:2024
-
cpe:2.3:a:autodesk:autocad_architecture:2025
-
cpe:2.3:a:autodesk:autocad_electrical:2021
-
cpe:2.3:a:autodesk:autocad_electrical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_electrical:2021.1.2
-
cpe:2.3:a:autodesk:autocad_electrical:2022
-
cpe:2.3:a:autodesk:autocad_electrical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_electrical:2022.1.2
-
cpe:2.3:a:autodesk:autocad_electrical:2023
-
cpe:2.3:a:autodesk:autocad_electrical:2024
-
cpe:2.3:a:autodesk:autocad_electrical:2025
-
cpe:2.3:a:autodesk:autocad_map_3d:2021
-
cpe:2.3:a:autodesk:autocad_map_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2021.1.2
-
cpe:2.3:a:autodesk:autocad_map_3d:2022
-
cpe:2.3:a:autodesk:autocad_map_3d:2022.0.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2022.1.2
-
cpe:2.3:a:autodesk:autocad_map_3d:2023
-
cpe:2.3:a:autodesk:autocad_map_3d:2024
-
cpe:2.3:a:autodesk:autocad_map_3d:2025
-
cpe:2.3:a:autodesk:autocad_mechanical:2021
-
cpe:2.3:a:autodesk:autocad_mechanical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2021.1.2
-
cpe:2.3:a:autodesk:autocad_mechanical:2022
-
cpe:2.3:a:autodesk:autocad_mechanical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2022.1.2
-
cpe:2.3:a:autodesk:autocad_mechanical:2023
-
cpe:2.3:a:autodesk:autocad_mechanical:2024
-
cpe:2.3:a:autodesk:autocad_mechanical:2025
-
cpe:2.3:a:autodesk:autocad_mep:2021
-
cpe:2.3:a:autodesk:autocad_mep:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mep:2021.1.2
-
cpe:2.3:a:autodesk:autocad_mep:2022
-
cpe:2.3:a:autodesk:autocad_mep:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mep:2022.1.2
-
cpe:2.3:a:autodesk:autocad_mep:2023
-
cpe:2.3:a:autodesk:autocad_mep:2024
-
cpe:2.3:a:autodesk:autocad_mep:2025
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021.1.2
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022.0.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022.1.2
-
cpe:2.3:a:autodesk:autocad_plant_3d:2023
-
cpe:2.3:a:autodesk:autocad_plant_3d:2024
-
cpe:2.3:a:autodesk:autocad_plant_3d:2025
-
cpe:2.3:a:autodesk:civil_3d:2021
-
cpe:2.3:a:autodesk:civil_3d:2021.1.1
-
cpe:2.3:a:autodesk:civil_3d:2021.1.2
-
cpe:2.3:a:autodesk:civil_3d:2022
-
cpe:2.3:a:autodesk:civil_3d:2022.0.1
-
cpe:2.3:a:autodesk:civil_3d:2022.1.1
-
cpe:2.3:a:autodesk:civil_3d:2022.1.2
-
cpe:2.3:a:autodesk:civil_3d:2023
-
cpe:2.3:a:autodesk:civil_3d:2024
-
cpe:2.3:a:autodesk:civil_3d:2025