CVE-2021-27036

Click the icon to Follow me:- twitterTelegramRedditDiscord

Summary:

A maliciously crafted PDF, PICT or TIFF file can be used to write beyond the allocated buffer while parsing PDF, PICT or TIFF files in Autodesk 2018, 2017, 2013, 2012, 2011. This vulnerability can be exploited to execute arbitrary code.

Reference Links(if available):

  • https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0003
  • https://www.zerodayinitiative.com/advisories/ZDI-21-1143/
  • https://www.zerodayinitiative.com/advisories/ZDI-21-1142/
  • https://www.zerodayinitiative.com/advisories/ZDI-21-1141/
  • https://www.zerodayinitiative.com/advisories/ZDI-21-1138/
  • CVSS Score (if available)

    v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P

    v3: / HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

    Links to Exploits(if available)

  • Available for Amazon Prime