CVE-2023-29076

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory corruption vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

Published: Nov 23, 2023
Updated: Dec 1, 2023
CVE: CVE-2023-29076
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
autodesk / autocad_map_3d	-	2023.1.4
autodesk / autocad_map_3d	2024.0.0	2024.1.1
autodesk / autocad_electrical	-	2023.1.4
autodesk / autocad_electrical	2024.0.0	2024.1.1
autodesk / autocad	2024.0.0	2024.1.1
autodesk / autocad	2023.0.0	2023.1.4
autodesk / autocad_architecture	2024.0.0	2024.1.1
autodesk / autocad_architecture	-	2023.1.4
autodesk / autocad_lt	-	2024.1
autodesk / autocad	-	2024.1
autodesk / autocad_lt	-	2023.1.4
autodesk / autocad_lt	2024.0.0	2024.1.1
autodesk / autocad_civil_3d	-	2023.1.4
autodesk / autocad_civil_3d	2024.0.0	2024.1.1
autodesk / autocad_advance_steel	-	2023.1.4
autodesk / autocad_advance_steel	2024.0.0	2024.1.1
autodesk / autocad_plant_3d	-	2023.1.4
autodesk / autocad_plant_3d	2024.0.0	2024.1.1
autodesk / autocad_mep	-	2023.1.4
autodesk / autocad_mep	2024.0.0	2024.1.1
autodesk / autocad_mechanical	-	2023.1.4
autodesk / autocad_mechanical	2024.0.0	2024.1.1

https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0018

Vulnerability Database

289,697

CVE-2023-29076