CVE-2024-0446 Information

Description

A maliciously crafted STP CATPART or MODEL file when parsed in ASMKERN228A.dll through Autodesk AutoCAD can force an Out-of-Bound Write. A malicious actor can leverage this vulnerability to cause a crash write sensitive data or execute arbitrary code in the context of the current process. 

Reference

https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002