Intrusion PreventionAutodesk.DWG.TrueView.CVE-2021-27040.Out.Of.Bounds.Read
Description
This indicates an attack attempt against an Out-Of-Bounds Read vulnerability in Autodesk products.
The vulnerability is caused by an error when the vulnerable software handles a malicious DWG file. A remote attacker can exploit this to gain unauthorized access to sensitive information
Affected Products
Autodesk Advance Steel 2022, 2021, 2020, 2019
AutoCAD 2022, 2021, 2020, 2019
AutoCAD Architecture 2022, 2021, 2020, 2019
AutoCAD Electrical 2022, 2021, 2020, 2019
AutoCAD Map 3D 2022, 2021, 2020, 2019
AutoCAD Mechanical 2022, 2021, 2020, 2019
AutoCAD MEP 2022, 2021, 2020, 2019
AutoCAD Plant 3D 2022, 2021, 2020, 2019
AutoCAD LT 2022, 2021, 2020, 2019
Autodesk Civil 3D 2022, 2021, 2020, 2019
Impact
System Compromise: Remote attackers could gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0004
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 50521 |
| Created | Jun 24, 2021 |
| Updated | Dec 08, 2021 |
| Risk |
|
| CVE ID | CVE-2021-27040 |
| Exploit Prediction Score | 0.21% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |