Vulnerability Details CVE-2024-23127
A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.7%
CVSS Severity
CVSS v3 Score 7.8
References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009
Products affected by CVE-2024-23127
-
cpe:2.3:a:autodesk:advance_steel:2021
-
cpe:2.3:a:autodesk:advance_steel:2021.1.1
-
cpe:2.3:a:autodesk:advance_steel:2021.1.2
-
cpe:2.3:a:autodesk:advance_steel:2022
-
cpe:2.3:a:autodesk:advance_steel:2022.0.1
-
cpe:2.3:a:autodesk:advance_steel:2022.1.2
-
cpe:2.3:a:autodesk:advance_steel:2023
-
cpe:2.3:a:autodesk:advance_steel:2024
-
cpe:2.3:a:autodesk:advance_steel:2025
-
cpe:2.3:a:autodesk:autocad:2021
-
cpe:2.3:a:autodesk:autocad:2021.1.1
-
cpe:2.3:a:autodesk:autocad:2021.1.2
-
cpe:2.3:a:autodesk:autocad:2022
-
cpe:2.3:a:autodesk:autocad:2022.0.1
-
cpe:2.3:a:autodesk:autocad:2022.1
-
cpe:2.3:a:autodesk:autocad:2022.1.2
-
cpe:2.3:a:autodesk:autocad:2023
-
cpe:2.3:a:autodesk:autocad:2024
-
cpe:2.3:a:autodesk:autocad:2025
-
cpe:2.3:a:autodesk:autocad_architecture:2021
-
cpe:2.3:a:autodesk:autocad_architecture:2021.1.1
-
cpe:2.3:a:autodesk:autocad_architecture:2021.1.2
-
cpe:2.3:a:autodesk:autocad_architecture:2022
-
cpe:2.3:a:autodesk:autocad_architecture:2022.0.1
-
cpe:2.3:a:autodesk:autocad_architecture:2022.1.2
-
cpe:2.3:a:autodesk:autocad_architecture:2023
-
cpe:2.3:a:autodesk:autocad_architecture:2024
-
cpe:2.3:a:autodesk:autocad_architecture:2025
-
cpe:2.3:a:autodesk:autocad_electrical:2021
-
cpe:2.3:a:autodesk:autocad_electrical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_electrical:2021.1.2
-
cpe:2.3:a:autodesk:autocad_electrical:2022
-
cpe:2.3:a:autodesk:autocad_electrical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_electrical:2022.1.2
-
cpe:2.3:a:autodesk:autocad_electrical:2023
-
cpe:2.3:a:autodesk:autocad_electrical:2024
-
cpe:2.3:a:autodesk:autocad_electrical:2025
-
cpe:2.3:a:autodesk:autocad_map_3d:2021
-
cpe:2.3:a:autodesk:autocad_map_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2021.1.2
-
cpe:2.3:a:autodesk:autocad_map_3d:2022
-
cpe:2.3:a:autodesk:autocad_map_3d:2022.0.1
-
cpe:2.3:a:autodesk:autocad_map_3d:2022.1.2
-
cpe:2.3:a:autodesk:autocad_map_3d:2023
-
cpe:2.3:a:autodesk:autocad_map_3d:2024
-
cpe:2.3:a:autodesk:autocad_map_3d:2025
-
cpe:2.3:a:autodesk:autocad_mechanical:2021
-
cpe:2.3:a:autodesk:autocad_mechanical:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2021.1.2
-
cpe:2.3:a:autodesk:autocad_mechanical:2022
-
cpe:2.3:a:autodesk:autocad_mechanical:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mechanical:2022.1.2
-
cpe:2.3:a:autodesk:autocad_mechanical:2023
-
cpe:2.3:a:autodesk:autocad_mechanical:2024
-
cpe:2.3:a:autodesk:autocad_mechanical:2025
-
cpe:2.3:a:autodesk:autocad_mep:2021
-
cpe:2.3:a:autodesk:autocad_mep:2021.1.1
-
cpe:2.3:a:autodesk:autocad_mep:2021.1.2
-
cpe:2.3:a:autodesk:autocad_mep:2022
-
cpe:2.3:a:autodesk:autocad_mep:2022.0.1
-
cpe:2.3:a:autodesk:autocad_mep:2022.1.2
-
cpe:2.3:a:autodesk:autocad_mep:2023
-
cpe:2.3:a:autodesk:autocad_mep:2024
-
cpe:2.3:a:autodesk:autocad_mep:2025
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021.1.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2021.1.2
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022.0.1
-
cpe:2.3:a:autodesk:autocad_plant_3d:2022.1.2
-
cpe:2.3:a:autodesk:autocad_plant_3d:2023
-
cpe:2.3:a:autodesk:autocad_plant_3d:2024
-
cpe:2.3:a:autodesk:autocad_plant_3d:2025
-
cpe:2.3:a:autodesk:civil_3d:2021
-
cpe:2.3:a:autodesk:civil_3d:2021.1.1
-
cpe:2.3:a:autodesk:civil_3d:2021.1.2
-
cpe:2.3:a:autodesk:civil_3d:2022
-
cpe:2.3:a:autodesk:civil_3d:2022.0.1
-
cpe:2.3:a:autodesk:civil_3d:2022.1.1
-
cpe:2.3:a:autodesk:civil_3d:2022.1.2
-
cpe:2.3:a:autodesk:civil_3d:2023
-
cpe:2.3:a:autodesk:civil_3d:2024
-
cpe:2.3:a:autodesk:civil_3d:2025