Remote Code Execution via Double Free Vulnerability in Autodesk Design Review

Remote Code Execution via Double Free Vulnerability in Autodesk Design Review

CVE-2021-27033 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A Double Free vulnerability allows remote attackers to execute arbitrary code on PDF files within affected installations of Autodesk Design Review 2018, 2017, 2013, 2012, 2011. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Learn more about our User Device Pen Test.