First published: Mon Oct 03 2022(Updated: )
A malicious crafted file consumed through Moldflow Synergy, Moldflow Adviser, Moldflow Communicator, and Advanced Material Exchange applications could lead to memory corruption vulnerability. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
Credit: psirt@autodesk.com
Affected Software | Affected Version | How to fix |
---|---|---|
Autodesk Advanced Material Exchange | =2019 | |
Autodesk Advanced Material Exchange | =2021 | |
Autodesk Moldflow Adviser | =2019 | |
Autodesk Moldflow Adviser | =2021 | |
Autodesk Moldflow Communicator | =2019 | |
Autodesk Moldflow Communicator | =2021 | |
Autodesk Moldflow Synergy | =2019 | |
Autodesk Moldflow Synergy | =2021 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-33883 is considered a high severity vulnerability due to the potential for code execution from memory corruption.
To fix CVE-2022-33883, users should update their Autodesk Moldflow and Advanced Material Exchange applications to the latest patched versions.
CVE-2022-33883 affects Autodesk Moldflow Adviser, Moldflow Communicator, Moldflow Synergy, and Advanced Material Exchange versions 2019 and 2021.
CVE-2022-33883 can be exploited by using a maliciously crafted file that leads to memory corruption, potentially allowing for arbitrary code execution.
CVE-2022-33883 can be exploited locally, as it requires opening a compromised file within the affected Autodesk applications.