1. Home
  2. CVE Database
  3. CVE-2022-33881
HIGH · 7.8

CVE-2022-33881

Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in conjunction with other vulnerabilities could lead to code execution in...

Vulnerability Description

Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
AutodeskAutocad2023
AutodeskAutocad Advance Steel2023
AutodeskAutocad Architecture2023
AutodeskAutocad Civil 3D2023
AutodeskAutocad Electrical2023
AutodeskAutocad Lt2023
AutodeskAutocad Map 3D2023
AutodeskAutocad Mechanical2023
AutodeskAutocad Mep2023
AutodeskAutocad Plant 3D2023

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2022-33881?

CVE-2022-33881 is a vulnerability with a CVSS score of 7.8 (HIGH). Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in conjunction with other vulnerabilities could lead to code execution in...

How severe is CVE-2022-33881?

CVE-2022-33881 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-33881?

Check the references section above for vendor advisories and patch information. Affected products include: Autodesk Autocad, Autodesk Autocad Advance Steel, Autodesk Autocad Architecture, Autodesk Autocad Civil 3D, Autodesk Autocad Electrical.