CVE Published: 25/06/2024 |
CVE Updated: 02/08/2024 |
CVE Year: 2024 Source: autodesk |
Vendor: Autodesk |
Product: AutoCAD, Advance Steel and Civil 3D Status : PUBLISHED
CVE-2024-37001 Description
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.