Arbitrary Code Execution Vulnerability in DWG File Parsing

Arbitrary Code Execution Vulnerability in DWG File Parsing

CVE-2021-27040 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.

Learn more about our Web Application Penetration Testing UK.