CVE-2022-42945

DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability. Successful exploitation by a malicious attacker could result in remote code execution on the target system.

Published: Dec 19, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-42945
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
autodesk / dwg_trueview	2023	2023.x

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0024

Vulnerability Database

289,697

CVE-2022-42945