CVE-2024-23135

{"id": "CVE-2024-23135", "cveTags": [], "metrics": {}, "published": "2024-02-22T05:15:09.357", "references": [{"url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002", "source": "psirt@autodesk.com"}, {"url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0004", "source": "psirt@autodesk.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "psirt@autodesk.com", "description": [{"lang": "en", "value": "CWE-416"}]}], "descriptions": [{"lang": "en", "value": "A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.\n"}, {"lang": "es", "value": "Un archivo SLDPRT creado con fines malintencionados cuando ASMkern228A.dll se analiza a trav\u00e9s de Autodesk AutoCAD se puede utilizar en una vulnerabilidad de user-after-free. Esta vulnerabilidad, junto con otras vulnerabilidades, podr\u00eda provocar la ejecuci\u00f3n de c\u00f3digo en el proceso actual."}], "lastModified": "2024-03-18T00:15:07.437", "sourceIdentifier": "psirt@autodesk.com"}