Security Advisory

CVE-2024-23142

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-25 01:24:02

Last updated 2025-08-26 20:41:57

Assigner autodesk

State PUBLISHED

Description

A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk applications, can cause a use-after-free vulnerability. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.

← Browse all CVEs View on cve.org ↗