CVE-2024-37002

HIGH Year: 2024
CVSS v3 Score
7.8
High
Weakness Type
CWE-457
View all →

Vulnerability Description

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications, can be used to uninitialized variables. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.

Related Vulnerabilities

CVE-2021-31435

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.931. User interaction is required to exploit this vulnerability in that the t...

CWE-4572021

CVE-2021-34953

HIGH
CVSS:7.8(High)

Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit P...

CWE-4572021

CVE-2021-46566

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in...

CWE-4572021

CVE-2021-46570

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.0.80. User interaction is required to exploit this vulnerability in that th...

CWE-4572021

CVE-2021-46617

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in...

CWE-4572021

CVE-2021-46631

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target...

CWE-4572021