CVE-2019-7360
Last modified
CVE-2019-7360 is a vulnerability of currently unknown severity. An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018, Autodesk AutoCAD P&ID 2018, Autodesk AutoCAD Plant 3D 2018, Autodesk AutoCAD LT 2018, and Autodesk Civil 3D 2018. A specially crafted DXF file may trigger a use-after-free, resulting in code execution.. EPSS estimates a 1.64% chance of exploitation in the next 30 days.
Description
An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018, Autodesk AutoCAD P&ID 2018, Autodesk AutoCAD Plant 3D 2018, Autodesk AutoCAD LT 2018, and Autodesk Civil 3D 2018. A specially crafted DXF file may trigger a use-after-free, resulting in code execution.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Autodesk | Advance Steel | 2018 |
| Autodesk | Autocad | 2018 |
| Autodesk | Autocad Architecture | 2018 |
| Autodesk | Autocad Electrical | 2018 |
| Autodesk | Autocad Lt | 2018 |
| Autodesk | Autocad Map 3d | 2018 |
| Autodesk | Autocad Mechanical | 2018 |
| Autodesk | Autocad Mep | 2018 |
| Autodesk | Autocad P\&Id | 2018 |
| Autodesk | Autocad Plant 3d | 2018 |
| Autodesk | Civil 3d | 2018 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-7360?
How severe is CVE-2019-7360?
How do I fix CVE-2019-7360?
Are you affected by CVE-2019-7360?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST