vulnerability

AutoDesk AutoCAD: CVE-2021-27039: Security Advisory for Autodesk Design Review, Advance Steel, Civil 3D and AutoCAD Products - ADSK-SA-2022-0004

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jan 14, 2022

Added

Jul 28, 2025

Modified

May 29, 2026

Description

CVE-2021-27039 - A maliciously crafted TIFF and PCX file in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code.

Solution

autodesk-autocad-upgrade-latest

References

CVE-2021-27039
https://attackerkb.com/topics/CVE-2021-27039
https://www.cve.org/CVERecord?id=CVE-2021-27039
https://www.autodesk.com/trust/security-advisories/ADSK-SA-2022-0004
https://euvd.enisa.europa.eu/vulnerability/EUVD-2021-13810
CWE-787
EUVD-EUVD-2021-13810

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report