CVE-2024-23158 Information

Description

A maliciously crafted IGES file when parsed in ASMImport229A.dll through Autodesk applications can be used to cause a use-after-free vulnerability. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.

Reference

https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0010