CVE-2021-27043

Published Jun 25, 2021
Last updated 3 years ago
CVSS high 7.8
Overview

Description: An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application.
Source: psirt@autodesk.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-787
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DDC0E547-C366-4A0E-95DE-EC420492E698",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8319413-E093-4931-B2DB-A46522DF93C9",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B350B87-23EC-44F8-9A5F-9AC815E15BD9",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAE14E69-8BCB-4E00-8BAB-CB7F1688DC27",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A084A960-35D8-4B9C-87DE-0213CA40CAD8",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20EE0BDC-3A97-4CD4-A232-922F8D613856",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FDD2042-5313-4658-AA4E-109684E91C43",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE031BD1-9F02-44C2-865E-2011511B36F5",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A51CDDA-0D83-4331-9AB6-F6ED076157F6",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "143F8B16-E253-477E-9875-94928BE5596B",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "607A4804-A286-4237-82C3-8BE98662AE20",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "967B286E-5E73-47E3-BC2F-951E26720370",
            "versionEndIncluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64C50E3E-8EFA-4B0D-B284-CF8FE4129866",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBD4F808-CA46-4A8E-82DD-6D1A82DDF91C",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFD09E68-2C34-4E76-9B67-868FA6E825A6",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08BC587D-E4C7-4758-8AF5-1970892C35C8",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "282A07AC-8D43-4580-8D2E-8E30370049F3",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E37E4967-AC88-42D6-98C2-1BA63F20BD5C",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49512EB3-DE17-45FF-AB90-2966462A9C3C",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01A870BA-E78E-4975-BF6D-7D410BE8CD6C",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EF85630-3DDC-4026-AC5A-F1B197F98C9E",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5309100-B3E9-4144-AEA3-B9030E93FD78",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "954682D1-2E7A-4EAB-B4B8-43E2038EB7C7",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1016D7F3-2780-4412-A7AA-361B44A8632E",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3D0B0D7-FC6F-43D8-85AA-AC0BD464E5A1",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF6DF983-6772-45D4-A82A-EE1BB2EEFD4F",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7ABD866-E08B-42F3-A19A-5574563AA540",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6716F29E-FBA2-4178-A8AE-269D9CC5AC59",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "372905FF-2C9B-4366-BE56-36CACDA63BCD",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2F1DCEB-7ABB-4109-943A-E2DEFB17D330",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA49E2B8-CBF5-4F6E-A832-D1FDB597FADE",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CF7601F-D6A3-4CD6-961D-B8B1B82E29CE",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F285B8D-585C-4C23-98FA-E09DE53C8247",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A10D9CEE-D92D-470D-928F-8F90243618EE",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0199953B-BCAC-405E-BDC6-951BEAE01570",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBDFDF50-5230-41F1-B380-AD3EC4B53DB7",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6A3326B-382B-4137-B0E7-0D54E825B717",
            "versionEndExcluding": "2019.1.3",
            "versionStartIncluding": "2019"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48F67A57-7528-406B-9BF1-6A963F732564",
            "versionEndExcluding": "2020.1.4",
            "versionStartIncluding": "2020"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825FC323-CAE7-4B39-85AD-966980D30D89",
            "versionEndExcluding": "2021.1.1",
            "versionStartIncluding": "2021"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:civil_3d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F430EA73-2B9F-42D9-9005-42F439ABF63C",
            "versionEndExcluding": "2022.0.1",
            "versionStartIncluding": "2022"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:dwg_trueview:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "713BBAEC-BE6D-40BC-9FB3-EBB906FB09BA",
            "versionEndExcluding": "2022.1.1",
            "versionStartIncluding": "2022"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
