CVE-2023-41139

CVE-2023-41139

Vendor Autodesk
Product AutoCAD, Advance Steel and Civil 3D
Weakness CWE-822
Published November 23, 2023
Last update August 2, 2024

CVSS base score

What the vulnerability does

01Description

A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

Key dates

02Disclosure timeline

November 23, 2023 CVE published
August 2, 2024 Record updated