CVE-2021-40167 – This vulnerability allows memory corruption thr... (How to Fix)

Q: What is the severity of CVE-2021-40167?

CVE-2021-40167 has a CVSS score of 7.8 (HIGH). This vulnerability allows memory corruption through specially crafted DWF or PCT files when opened in Autodesk Design Review. Attackers could potentially execute arbitrary code by exploiting this read access violation. Users of Autodesk Design Review are affected.

📋 TL;DR

This vulnerability allows memory corruption through specially crafted DWF or PCT files when opened in Autodesk Design Review. Attackers could potentially execute arbitrary code by exploiting this read access violation. Users of Autodesk Design Review are affected.

💻 Affected Systems

Products:

Autodesk Design Review

Versions: All versions prior to 2022

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: Requires user interaction to open malicious file

📦 What is this software?

Design Review by Autodesk

View all CVEs affecting Design Review →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Application crash or denial of service, with potential for limited code execution if combined with other vulnerabilities.

🟢

If Mitigated

Application crash without code execution if memory protections are enabled.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires user to open malicious file; memory corruption may require additional vulnerabilities for reliable code execution

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2022 version or later

Vendor Advisory: https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004

Restart Required: Yes

Instructions:

1. Download latest Autodesk Design Review from official Autodesk website. 2. Uninstall previous version. 3. Install updated version. 4. Restart system.

🔧 Temporary Workarounds

Block malicious file extensions

windows

Prevent opening of DWF and PCT files via email filters or endpoint protection

Use application control

windows

Restrict execution of DesignReview.exe or block untrusted file sources

🧯 If You Can't Patch

Disable Design Review as default program for DWF/PCT files
Implement user training to avoid opening untrusted design files

🔍 How to Verify

Check if Vulnerable:

Check Design Review version in Help > About; if version is pre-2022, it's vulnerable

Check Version:

Not applicable - check via GUI

Verify Fix Applied:

Confirm version is 2022 or later in Help > About

📡 Detection & Monitoring

Log Indicators:

Application crashes of DesignReview.exe
Access violations in Windows Event Logs

Network Indicators:

Downloads of DWF/PCT files from untrusted sources

SIEM Query:

EventID=1000 OR EventID=1001 AND ProcessName="DesignReview.exe"

📊 Metadata

CVE ID: CVE-2021-40167

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-125

Published: January 25, 2022

Last Updated: November 21, 2024

🔗 References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004 Vendor Advisory
https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0004 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-40167, you might also want to check these: