CVE-2021-40163

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011 Vendor Advisory
https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_advance_steel:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_advance_steel:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_advance_steel:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_advance_steel:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_civil_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_civil_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_civil_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_civil_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:macos:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:macos:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:macos:*:*
cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:design_review:2018:-:*:*:*:*:*:*
cpe:2.3:a:autodesk:design_review:2018:hotfix:*:*:*:*:*:*
cpe:2.3:a:autodesk:design_review:2018:hotfix2:*:*:*:*:*:*
cpe:2.3:a:autodesk:design_review:2018:hotfix3:*:*:*:*:*:*
cpe:2.3:a:autodesk:dwg_trueview:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:dwg_trueview:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:dwg_trueview:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:dwg_trueview:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:fusion:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infrastructure_parts_editor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infrastructure_parts_editor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infrastructure_parts_editor:2021:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infrastructure_parts_editor:2022:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2019.3:-:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2019.3:hotfix_1:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2019.3:hotfix_2:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2019.3:hotfix_3:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2020.2:-:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2020.2:hotfix_1:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2020.2:hotfix_2:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2021.2:-:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2021.2:hotfix_1:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2021.2:hotfix_2:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2022.0:-:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2022.0:hotfix_1:*:*:*:*:*:*
cpe:2.3:a:autodesk:infraworks:2022.1:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:inventor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:inventor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:inventor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:inventor:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:navisworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:navisworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:navisworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:navisworks:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:revit:2022:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:storm_and_sanitary_analysis:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:storm_and_sanitary_analysis:*:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:storm_and_sanitary_analysis:2019:*:*:*:*:*:*:*
cpe:2.3:a:autodesk:storm_and_sanitary_analysis:2022:*:*:*:*:*:*:*
History

21 Nov 2024, 06:23

Type Values Removed Values Added
References () https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011 - Vendor Advisory () https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011 - Vendor Advisory

11 Oct 2022, 17:08

Type Values Removed Values Added
New CVE
Information

Published : 2022-10-07 18:15

Updated : 2024-11-21 06:23

NVD link : CVE-2021-40163

Mitre link : CVE-2021-40163

CVE.ORG link : CVE-2021-40163

JSON object : View

Products Affected

autodesk

  • autocad_mep
  • revit
  • design_review
  • autocad_map_3d
  • autocad_civil_3d
  • autocad_lt
  • infraworks
  • autocad_architecture
  • autocad_plant_3d
  • autocad_advance_steel
  • infrastructure_parts_editor
  • fusion
  • inventor
  • navisworks
  • autocad_electrical
  • autocad_mechanical
  • autocad
  • storm_and_sanitary_analysis
  • dwg_trueview
CWE
CWE-787

Out-of-bounds Write