CVE-2024-37003 Information

Description

A maliciously crafted DWG and SLDPRT file when parsed in opennurbs.dll and ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash read sensitive data or execute arbitrary code in the context of the current process.

Reference

https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0009