Design Review TIFF Read Overrun Can Exploit Contextual Code Exec
CVE-2022-27866 Published on July 29, 2022

A maliciously crafted TIFF file when consumed through DesignReview.exe application can be forced to read beyond allocated boundaries when parsing the TIFF file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

NVD

Products Associated with CVE-2022-27866

Want to know whenever a new CVE is published for AutoDesk Design Review? stack.watch will email you.

AutoDesk Design Review

Exploit Probability

EPSS

0.06%

Percentile

18.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Design Review TIFF Read Overrun Can Exploit Contextual Code ExecCVE-2022-27866 Published on July 29, 2022

Products Associated with CVE-2022-27866

Exploit Probability

Design Review TIFF Read Overrun Can Exploit Contextual Code Exec
CVE-2022-27866 Published on July 29, 2022