CVE-2022-27871

Published Jun 21, 2022
Last updated 2 years ago
CVSS high 7.8
Overview

Description: Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This vulnerability may be exploited to execute arbitrary code.
Source: psirt@autodesk.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-770
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:autodesk:3ds_max:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88A89032-1BA1-4657-98F6-E2ECB19BB4E6"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:3ds_max:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "887292AA-AC0F-4931-B55B-5FAAA127E3D0"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "963B02A8-97DE-4C10-9AE1-3DA4FBC9AF9F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C4543D1-94E4-4470-91BF-6F3141FD9DAE"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB44E46E-C1FF-4642-9F0D-FEE599F12508"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:advance_steel:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FABA4668-B759-4EF8-B4F7-DD824A5BD38B"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "411DC826-735A-4BEB-84BE-9250F97F612E"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E30E2562-D38E-4764-874E-5B2FCF5639E5"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88B2C295-D091-4C1D-8285-4309967707BC"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EACE09F2-A323-4E4B-9A35-4EBAE3864E6C"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad:2022:*:*:*:*:macos:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68FC54D1-B4FC-404E-9742-72F8340FE3C7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9275E76C-2A79-462A-A9D3-D0B6BBCDD0CC"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7DFA12E-48C5-47B9-BD9F-1AFACBF4E1EA"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "535A5D39-1C82-4301-9E5B-C9E0D75F38B9"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_architecture:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "316615EC-BC9F-4B6A-8163-EBECC480EFDE"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_civil_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB3A878B-2142-404F-BCF4-BB508674C6C4"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_civil_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64F2EC88-168D-4DD1-9ADA-3F9FA60D6E35"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_civil_3d:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D73C803-7567-4C1D-B62A-C3C52369022D"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_civil_3d:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5F77B03-3221-4564-B4FF-7BF7EEC1C5B6"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A10DE5AF-1718-4899-9238-CFFDC72D05B7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E388264D-D2D4-4BE4-9097-8F547D73ABE5"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16611BAA-C200-4C8B-823F-1AB95F5E1317"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_electrical:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2DC5114-48D2-4D85-8E80-B4BCB0FD78F5"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03682B7E-1CF1-4456-A51F-A6ADFC177935"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "371C5F60-4959-40C7-93E1-A01510A95115"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D83FB4C7-B374-4907-8E2B-EEE61C8339E7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "601676EC-2EB4-45D0-B1AE-0980CBD68770"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_lt:2022:*:*:*:*:macos:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A2EF334-E4E2-40DA-BD51-B74EE1E0ACCF"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04E05510-B21B-4DDD-88D7-CEB8963E1AFB"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4CD010A-FDBC-40F9-95AC-0CD8388B85D1"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC99E0F3-AA11-4390-A7C0-5BBFCDA94E3F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_map_3d:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33AA60CF-611C-45FC-92F8-7517D87B1645"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19255CEC-6161-4D44-B87E-52E86DF4FBA7"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7147F378-DFB0-48A8-8B05-8777E1CC7F90"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B5C858C-4A01-4916-BE3E-B9056D67CF5F"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mechanical:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7EB83A4A-D4C2-4509-BD49-15B9BBC7BF97"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F608B1C-BA96-4EA8-A540-83870262CBC1"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CFAAD19-6248-42CB-B177-EC2E5141A953"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C52D90B-578B-4281-BF0E-B7CDA425ED05"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_mep:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C8AD4F3-AA82-49F5-A18A-85127FDB8B95"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E536B0D-4C95-4589-981A-2F8A6C4B44DC"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FBDD3AC-FA00-462F-AA13-5A75B5D50689"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73E2E9E8-2269-4729-8D8F-3C26974F5FD2"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:autocad_plant_3d:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "452A1A75-C59A-43AB-9C43-BA49EB95C39C"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:design_review:2018:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "213232B9-A40B-436D-A66A-B65C49D59BE6"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:navisworks:2019:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8EB8353-CA0F-4B38-9427-56C845696A7D"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:navisworks:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B3A9D11-51D7-4384-A6CF-B1AE46625E66"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:navisworks:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8694D891-A923-4B62-A508-77E6EBC54646"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:revit:2020:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A183FC7-49B7-4475-A580-E87B68690997"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:revit:2021:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9CFAE69-D0D3-4850-8752-DD2DC3FF51CA"
          },
          {
            "criteria": "cpe:2.3:a:autodesk:revit:2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70FD96A0-AC16-4E51-B4C1-6BB14C2D905A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
