CVE-2021-27038
First published: Fri Jul 09 2021(Updated: )
A Type Confusion vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can occur when processing a maliciously crafted PDF file. A malicious actor can leverage this to execute arbitrary code.
Credit: psirt@autodesk.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Autodesk Design Review | =2011 | |
| Autodesk Design Review | =2012 | |
| Autodesk Design Review | =2013 | |
| Autodesk Design Review | =2017 | |
| Autodesk Design Review | =2018 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-27038?
CVE-2021-27038 is a Type Confusion vulnerability in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 that can allow an attacker to execute arbitrary code.
How does the Type Confusion vulnerability in Autodesk Design Review occur?
The Type Confusion vulnerability in Autodesk Design Review can occur when processing a maliciously crafted PDF file.
How severe is CVE-2021-27038?
CVE-2021-27038 has a severity rating of 7.8, which is considered high.
Which versions of Autodesk Design Review are affected by CVE-2021-27038?
Autodesk Design Review 2018, 2017, 2013, 2012, and 2011 are affected by CVE-2021-27038.
How can an attacker exploit CVE-2021-27038?
An attacker can exploit CVE-2021-27038 by leveraging the Type Confusion vulnerability to execute arbitrary code.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/tags
- agent/event
- vendor/autodesk
- canonical/autodesk design review
- version/autodesk design review/2011
- version/autodesk design review/2012
- version/autodesk design review/2013
- version/autodesk design review/2017
- version/autodesk design review/2018