Every CVE whose affected-product data names Autodesk Infraworks, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2021-40162 — CVSS 7.8 (high): A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries…
CVE-2021-40163 — CVSS 7.8 (high): A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing…
CVE-2021-40164 — CVSS 7.8 (high): A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute…
CVE-2021-40165 — CVSS 7.8 (high): A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer…
CVE-2021-40166 — CVSS 7.8 (high): A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed…
CVE-2023-25003 — CVSS 7.8 (high): A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / read…
CVE-2023-25004 — CVSS 7.8 (high): A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these…
CVE-2023-25005 — CVSS 7.8 (high): A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL…
CVE-2023-29068 — CVSS 7.8 (high): A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in…