CVE-2019-7364

Published Aug 23, 2019

Last updated 5 years ago

CVSS high 7.8

Overview

Description: DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D and version 2017 of AutoCAD P&ID. An attacker may trick a user into opening a malicious DWG file that may leverage a DLL preloading vulnerability in AutoCAD which may result in code execution.
Source: psirt@autodesk.com
NVD status: Analyzed

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-427

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB72BEDD-3A76-44B8-8192-D4F12C87488D"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "461B3C59-740C-4530-80DA-23DD38A0EEB7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "963B02A8-97DE-4C10-9AE1-3DA4FBC9AF9F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C4543D1-94E4-4470-91BF-6F3141FD9DAE"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D45E4513-4F91-492F-ABFA-E67EAEB3514C"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C2610D4-81E7-4B85-9147-C3F24895EDB0"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "411DC826-735A-4BEB-84BE-9250F97F612E"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E30E2562-D38E-4764-874E-5B2FCF5639E5"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65CA52C5-9F62-455C-949C-4AE00FDDFA09"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECDE64CF-3527-4C9A-9672-E2FA3BCC8B65"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9275E76C-2A79-462A-A9D3-D0B6BBCDD0CC"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7DFA12E-48C5-47B9-BD9F-1AFACBF4E1EA"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D93A0DCA-DE9C-4A0E-8EC3-46B1B32D88EB"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC2B0DF8-8827-4CF2-94F1-D2871FA5095F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A10DE5AF-1718-4899-9238-CFFDC72D05B7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E388264D-D2D4-4BE4-9097-8F547D73ABE5"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36D3F11C-900E-436C-A628-75CE5218489B"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85BF0890-5AE7-46BA-8FD4-667B20081A0C"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03682B7E-1CF1-4456-A51F-A6ADFC177935"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "371C5F60-4959-40C7-93E1-A01510A95115"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7773B26C-12D3-4D00-990D-16F6978302A7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4C4F749-A0C3-4C25-B5FC-CE3E49AFF8F6"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04E05510-B21B-4DDD-88D7-CEB8963E1AFB"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4CD010A-FDBC-40F9-95AC-0CD8388B85D1"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A591011C-4E67-497D-89B4-6F32460EEF1F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E34DF2FB-6A4F-4060-9DE4-EE635D9056E8"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19255CEC-6161-4D44-B87E-52E86DF4FBA7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7147F378-DFB0-48A8-8B05-8777E1CC7F90"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01D7FD7C-B818-4FA1-A845-6721729274EA"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA943872-F736-4EC2-8328-9AABCAE08154"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F608B1C-BA96-4EA8-A540-83870262CBC1"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CFAAD19-6248-42CB-B177-EC2E5141A953"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_p\\&id:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "166A2A40-5073-4072-BBF9-5593FA052680"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15F0D764-62D6-4729-BB98-8C4BEBACD45A"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68F6B255-EE77-48BA-AEEE-9395C85BF274"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E536B0D-4C95-4589-981A-2F8A6C4B44DC"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FBDD3AC-FA00-462F-AA13-5A75B5D50689"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:2017:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AAAC86E-4D30-4A33-AC84-57486A7C26D8"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:2018:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2692C0E3-9A82-42BA-A80D-8A0D72FD3164"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F8A4F1F-0D78-41FB-BB62-4A6164AC0F51"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2A4C41C-E547-4693-8C53-E21A56323D52"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References