Intrusion PreventionAutodesk.DWG.TrueView.CVE-2022-27524.Memory.Corruption
Description
This indicates an attack attempt to exploit an Out of Bounds Read Vulnerability in Autodesk DWG TrueView.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DWG file. A remote attacker may be able to exploit this to disclose sensitive information within the context of the application.
Affected Products
Autodesk TrueView 2022, 2021, 2020, 2019
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0007
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2022-04-07 | 20.293 | Name:Autodesk. TrueView. CVE-2022-27524. Memory. Corruption:Autodesk. DWG. TrueView. CVE-2022-27524. Memory. Corruption |
| 2022-04-04 | 20.290 | Name:FG-VD-21-065_Adobe. 0day:Autodesk. TrueView. CVE-2022-27524. Memory. Corruption |
| 2022-04-04 | 20.290 | Severity:high:medium |
| 2021-10-14 | 18.179 | Default_action:pass:drop |
| 2021-10-06 | 18.171 |
| ID | 50822 |
| Created | Oct 05, 2021 |
| Updated | Apr 06, 2022 |
| Risk |
|
| CVE ID | CVE-2022-27524 |
| Exploit Prediction Score | 0.06% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |