{ "data_type": "CVE", "data_format": "MITRE", "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2021-40158", "ASSIGNER": "psirt@autodesk.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "n/a", "product": { "product_data": [ { "product_name": "Inventor", "version": { "version_data": [ { "version_value": "2022, 2021, 2020, 2019" } ] } } ] } } ] } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Out-of-bounds Read" } ] } ] }, "references": { "reference_data": [ { "refsource": "MISC", "name": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0002", "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0002" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-287/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-287/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-283/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-283/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-288/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-288/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-286/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-286/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-284/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-284/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-285/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-285/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-281/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-281/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-449/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-449/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-441/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-441/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-453/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-453/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-444/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-444/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-447/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-447/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-448/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-448/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-452/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-452/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-445/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-445/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-466/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-466/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-451/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-451/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-454/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-454/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-443/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-443/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-450/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-450/" }, { "refsource": "MISC", "name": "https://www.zerodayinitiative.com/advisories/ZDI-22-455/", "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-455/" } ] }, "description": { "description_data": [ { "lang": "eng", "value": "A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated boundaries when parsing the JT file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process." } ] } }