A maliciously crafted TGA or PCX file may be used to write beyond the allocated buffer through DesignReview.exe application while parsing TGA and PCX files. This vulnerability may be exploited to execute arbitrary code.
References
Link | Resource |
---|---|
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0009 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-07-29 13:15
Updated : 2022-08-09 05:14
NVD link : CVE-2022-27865
Mitre link : CVE-2022-27865
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
autodesk
- design_review