CVE-2023-2763
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-2763 is a vulnerability that affects SOLIDWORKS Desktop versions from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. The vulnerability includes Use-After-Free, Out-of-bounds Write, and Heap-based Buffer Overflow vulnerabilities in the DWG and DXF file reading procedure. Exploiting these vulnerabilities could allow an attacker to execute arbitrary code by opening a specially crafted DWG or DXF file. The risk score for this vulnerability is 26, indicating a high severity level. The base severity is also rated as high, with a score of 7.8. No privileges are required for exploitation, but user interaction is required. The attack vector is local, and the impact on integrity and confidentiality is also rated as high. Remediation actions have not been specified in the provided information.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions