CVE-2021-40166: Use After Free
First published: Fri Oct 07 2022(Updated: )
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code.
Credit: psirt@autodesk.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Autodesk Autocad | >=2019<2019.1.4 | |
| Autodesk Autocad | >=2020<2020.1.5 | |
| Autodesk Autocad | >=2021<2021.1.2 | |
| Autodesk Autocad | >=2022<2022.1.2 | |
| Autodesk Autocad Advance Steel | >=2019<2019.1.4 | |
| Autodesk Autocad Advance Steel | >=2020<2020.1.5 | |
| Autodesk Autocad Advance Steel | >=2021<2021.1.2 | |
| Autodesk Autocad Advance Steel | >=2022<2022.1.2 | |
| Autodesk AutoCAD Architecture | >=2019<2019.1.4 | |
| Autodesk AutoCAD Architecture | >=2020<2020.1.5 | |
| Autodesk AutoCAD Architecture | >=2021<2021.1.2 | |
| Autodesk AutoCAD Architecture | >=2022<2022.1.2 | |
| Autodesk Autocad Civil 3d | >=2019<2019.1.4 | |
| Autodesk Autocad Civil 3d | >=2020<2020.1.5 | |
| Autodesk Autocad Civil 3d | >=2021<2021.1.2 | |
| Autodesk Autocad Civil 3d | >=2022<2022.1.2 | |
| Autodesk AutoCAD Electrical | >=2019<2019.1.4 | |
| Autodesk AutoCAD Electrical | >=2020<2020.1.5 | |
| Autodesk AutoCAD Electrical | >=2021<2021.1.2 | |
| Autodesk AutoCAD Electrical | >=2022<2022.1.2 | |
| Autodesk Autocad Lt | >=2019<2019.1.4 | |
| Autodesk Autocad Lt | >=2020<2020.1.5 | |
| Autodesk Autocad Lt | >=2020<2020.3.2 | |
| Autodesk Autocad Lt | >=2021<2021.1.2 | |
| Autodesk Autocad Lt | >=2021<2021.2.2 | |
| Autodesk Autocad Lt | >=2022<2022.1.2 | |
| Autodesk Autocad Lt | >=2022<2022.2.2 | |
| Autodesk AutoCAD Map 3D | >=2019<2019.1.4 | |
| Autodesk AutoCAD Map 3D | >=2020<2020.1.5 | |
| Autodesk AutoCAD Map 3D | >=2021<2021.1.2 | |
| Autodesk AutoCAD Map 3D | >=2022<2022.1.2 | |
| Autodesk AutoCAD Mechanical | >=2019<2019.1.4 | |
| Autodesk AutoCAD Mechanical | >=2020<2020.1.5 | |
| Autodesk AutoCAD Mechanical | >=2021<2021.1.2 | |
| Autodesk AutoCAD Mechanical | >=2022<2022.1.2 | |
| Autodesk AutoCAD MEP | >=2019<2019.1.4 | |
| Autodesk AutoCAD MEP | >=2020<2020.1.5 | |
| Autodesk AutoCAD MEP | >=2021<2021.1.2 | |
| Autodesk AutoCAD MEP | >=2022<2022.1.2 | |
| Autodesk AutoCAD Plant 3D | >=2019<2019.1.4 | |
| Autodesk AutoCAD Plant 3D | >=2020<2020.1.5 | |
| Autodesk AutoCAD Plant 3D | >=2021<2021.1.2 | |
| Autodesk AutoCAD Plant 3D | >=2022<2022.1.2 | |
| Autodesk Design Review | =2018 | |
| Autodesk Design Review | =2018-hotfix | |
| Autodesk Design Review | =2018-hotfix2 | |
| Autodesk Design Review | =2018-hotfix3 | |
| Autodesk Dwg Trueview | >=2019<2019.1.4 | |
| Autodesk Dwg Trueview | >=2020<2020.1.5 | |
| Autodesk Dwg Trueview | >=2021<2021.1.2 | |
| Autodesk Dwg Trueview | >=2022<2022.1.1 | |
| Autodesk Fusion | >=2.0.10356<2.0.11405 | |
| Autodesk Infrastructure Parts Editor | >=2019<2019.2.2 | |
| Autodesk Infrastructure Parts Editor | >=2020<2020.0.2 | |
| Autodesk Infrastructure Parts Editor | =2021 | |
| Autodesk Infrastructure Parts Editor | =2022 | |
| Autodesk InfraWorks | >=2019<2019.3 | |
| Autodesk InfraWorks | >=2020<2020.2 | |
| Autodesk InfraWorks | >=2021<2021.2 | |
| Autodesk InfraWorks | =2019.3 | |
| Autodesk InfraWorks | =2019.3-hotfix_1 | |
| Autodesk InfraWorks | =2019.3-hotfix_2 | |
| Autodesk InfraWorks | =2019.3-hotfix_3 | |
| Autodesk InfraWorks | =2020.2 | |
| Autodesk InfraWorks | =2020.2-hotfix_1 | |
| Autodesk InfraWorks | =2020.2-hotfix_2 | |
| Autodesk InfraWorks | =2021.2 | |
| Autodesk InfraWorks | =2021.2-hotfix_1 | |
| Autodesk InfraWorks | =2021.2-hotfix_2 | |
| Autodesk InfraWorks | =2022.0 | |
| Autodesk InfraWorks | =2022.0-hotfix_1 | |
| Autodesk InfraWorks | =2022.1 | |
| Autodesk Inventor | >=2019<2019.6 | |
| Autodesk Inventor | >=2020<2020.5 | |
| Autodesk Inventor | >=2021<2021.4 | |
| Autodesk Inventor | >=2022<2022.2 | |
| Autodesk Navisworks | >=2019<2019.7 | |
| Autodesk Navisworks | >=2020<2020.5 | |
| Autodesk Navisworks | >=2021<2021.4 | |
| Autodesk Navisworks | >=2022<2022.2 | |
| Autodesk Revit | >=2019<2019.2.4 | |
| Autodesk Revit | >=2020<2020.2.6 | |
| Autodesk Revit | >=2021<2021.1.5 | |
| Autodesk Revit | =2022 | |
| Autodesk Storm And Sanitary Analysis | >=2020<2020.3.1 | |
| Autodesk Storm And Sanitary Analysis | >=2021<2021.3.1 | |
| Autodesk Storm And Sanitary Analysis | =2019 | |
| Autodesk Storm And Sanitary Analysis | =2022 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/autodesk
- canonical/autodesk autocad
- version/autodesk autocad/2019
- version/autodesk autocad/2020
- version/autodesk autocad/2021
- version/autodesk autocad/2022
- canonical/autodesk autocad advance steel
- version/autodesk autocad advance steel/2019
- version/autodesk autocad advance steel/2020
- version/autodesk autocad advance steel/2021
- version/autodesk autocad advance steel/2022
- canonical/autodesk autocad architecture
- version/autodesk autocad architecture/2019
- version/autodesk autocad architecture/2020
- version/autodesk autocad architecture/2021
- version/autodesk autocad architecture/2022
- canonical/autodesk autocad civil 3d
- version/autodesk autocad civil 3d/2019
- version/autodesk autocad civil 3d/2020
- version/autodesk autocad civil 3d/2021
- version/autodesk autocad civil 3d/2022
- canonical/autodesk autocad electrical
- version/autodesk autocad electrical/2019
- version/autodesk autocad electrical/2020
- version/autodesk autocad electrical/2021
- version/autodesk autocad electrical/2022
- canonical/autodesk autocad lt
- version/autodesk autocad lt/2019
- version/autodesk autocad lt/2020
- version/autodesk autocad lt/2021
- version/autodesk autocad lt/2022
- canonical/autodesk autocad map 3d
- version/autodesk autocad map 3d/2019
- version/autodesk autocad map 3d/2020
- version/autodesk autocad map 3d/2021
- version/autodesk autocad map 3d/2022
- canonical/autodesk autocad mechanical
- version/autodesk autocad mechanical/2019
- version/autodesk autocad mechanical/2020
- version/autodesk autocad mechanical/2021
- version/autodesk autocad mechanical/2022
- canonical/autodesk autocad mep
- version/autodesk autocad mep/2019
- version/autodesk autocad mep/2020
- version/autodesk autocad mep/2021
- version/autodesk autocad mep/2022
- canonical/autodesk autocad plant 3d
- version/autodesk autocad plant 3d/2019
- version/autodesk autocad plant 3d/2020
- version/autodesk autocad plant 3d/2021
- version/autodesk autocad plant 3d/2022
- canonical/autodesk design review
- version/autodesk design review/2018
- version/autodesk design review/2018-hotfix
- version/autodesk design review/2018-hotfix2
- version/autodesk design review/2018-hotfix3
- canonical/autodesk dwg trueview
- version/autodesk dwg trueview/2019
- version/autodesk dwg trueview/2020
- version/autodesk dwg trueview/2021
- version/autodesk dwg trueview/2022
- canonical/autodesk fusion
- version/autodesk fusion/2.0.10356
- canonical/autodesk infrastructure parts editor
- version/autodesk infrastructure parts editor/2019
- version/autodesk infrastructure parts editor/2020
- version/autodesk infrastructure parts editor/2021
- version/autodesk infrastructure parts editor/2022
- canonical/autodesk infraworks
- version/autodesk infraworks/2019
- version/autodesk infraworks/2020
- version/autodesk infraworks/2021
- version/autodesk infraworks/2019.3
- version/autodesk infraworks/2019.3-hotfix_1
- version/autodesk infraworks/2019.3-hotfix_2
- version/autodesk infraworks/2019.3-hotfix_3
- version/autodesk infraworks/2020.2
- version/autodesk infraworks/2020.2-hotfix_1
- version/autodesk infraworks/2020.2-hotfix_2
- version/autodesk infraworks/2021.2
- version/autodesk infraworks/2021.2-hotfix_1
- version/autodesk infraworks/2021.2-hotfix_2
- version/autodesk infraworks/2022.0
- version/autodesk infraworks/2022.0-hotfix_1
- version/autodesk infraworks/2022.1
- canonical/autodesk inventor
- version/autodesk inventor/2019
- version/autodesk inventor/2020
- version/autodesk inventor/2021
- version/autodesk inventor/2022
- canonical/autodesk navisworks
- version/autodesk navisworks/2019
- version/autodesk navisworks/2020
- version/autodesk navisworks/2021
- version/autodesk navisworks/2022
- canonical/autodesk revit
- version/autodesk revit/2019
- version/autodesk revit/2020
- version/autodesk revit/2021
- version/autodesk revit/2022
- canonical/autodesk storm and sanitary analysis
- version/autodesk storm and sanitary analysis/2020
- version/autodesk storm and sanitary analysis/2021
- version/autodesk storm and sanitary analysis/2019
- version/autodesk storm and sanitary analysis/2022