CVE-2024-23131

A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll or ASMDATAX228A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to code execution in the context of the current process.

CVSS

No CVSS.

References

Link	Resource
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009

Configurations

No configuration.

History

No history.

Information

Published : 2024-02-22 04:15

Updated : 2024-06-25 02:15

NVD link : CVE-2024-23131

Mitre link : CVE-2024-23131

CVE.ORG link : CVE-2024-23131

JSON object : View

Products Affected

No product.

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

JSON object

Attach tags to CVE-2024-23131

Attach tags to `CVE-2024-23131`