CVE-2021-27042 - Autodesk Autocad, Autodesk Autocad Plant 3d and Autodesk Autocad Map 3d

June 25, 2021

Critical 7.8

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists because the application fails to handle a crafted DWG file, which causes an unhandled exception. An attacker can leverage this vulnerability to execute arbitrary code.

Affected software

Autodesk Autocad

Autodesk Autocad Plant 3d

Autodesk Autocad Map 3d

Autodesk Autocad Civil 3d

Autodesk Autocad Mechanical

Autodesk Autocad Mep

Autodesk Autocad Architecture

Autodesk Advance Steel

Autodesk Autocad Lt

Autodesk Autocad Electrical

Reference links

https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0004

CVE-2021-27042 - Autodesk Autocad, Autodesk Autocad Plant 3d and Autodesk Autocad Map 3d

Affected software

Reference links

Get alerted to vulnerabilities in your software