Home/Product/autodesk autocad architecture
Product

autodesk autocad architecture

153 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-8894
>= 2024 and < 2024.1.8
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A ma
7.8HIGH
 CVE-2025-8893
>= 2024 and < 2024.1.8
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A m
7.8HIGH
 CVE-2025-5048
all versions
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force a Memory Corruption vulnerability. A mali
7.8HIGH
 CVE-2025-5047
all versions
A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicio
7.8HIGH
 CVE-2025-5046
all versions
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A ma
7.8HIGH
 CVE-2025-1276
>= 2023 and < 2023.1.7
A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability.
7.8HIGH
 CVE-2025-1275
>= 2023 and < 2023.1.7
A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulner
7.8HIGH
 CVE-2025-1652
>= 2022 and < 2022.1.6
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious
7.8HIGH
 CVE-2025-1651
>= 2022 and < 2022.1.6
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious
7.8HIGH
 CVE-2025-1650
>= 2022 and < 2022.1.6
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A
7.8HIGH
 CVE-2025-1649
>= 2022 and < 2022.1.6
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A
7.8HIGH
 CVE-2025-1433
>= 2022 and < 2022.1.6
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious
7.8HIGH
 CVE-2025-1432
>= 2022 and < 2022.1.6
A maliciously crafted 3DM file, when parsed through Autodesk AutoCAD, can force a Use-After-Free vulnerability. A malicious actor
7.8HIGH
 CVE-2025-1431
>= 2022 and < 2022.1.6
A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A maliciou
7.8HIGH
 CVE-2025-1430
>= 2022 and < 2022.1.6
A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious
7.8HIGH
 CVE-2025-1429
>= 2022 and < 2022.1.6
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious
7.8HIGH
 CVE-2025-1428
>= 2022 and < 2022.1.6
A maliciously crafted CATPART file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicio
7.8HIGH
 CVE-2025-1427
>= 2022 and < 2022.1.6
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A
7.8HIGH
 CVE-2024-9997
>= 2025 and < 2025.1.1
A maliciously crafted DWG file when parsed in acdb25.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A m
7.8HIGH
 CVE-2024-9996
>= 2025 and < 2025.1.1
A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability
7.8HIGH
 CVE-2024-9827
>= 2025 and < 2025.1.1
A maliciously crafted CATPART file when parsed in CC5Dll.dll through Autodesk AutoCAD can force an Out-of-Bounds Read vulnerabilit
7.8HIGH
 CVE-2024-9826
>= 2025 and < 2025.1.1
A maliciously crafted 3DM file when parsed in atf_api.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A mal
7.8HIGH
 CVE-2024-9489
>= 2025 and < 2025.1.1
A maliciously crafted DWG file when parsed in ACAD.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A mal
7.8HIGH
 CVE-2024-8896
>= 2025 and < 2025.1.1
A maliciously crafted DXF file when parsed in acdb25.dll through Autodesk AutoCAD can force to access a variable prior to initial
7.8HIGH
 CVE-2024-8600
>= 2025 and < 2025.1.1
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Memory Corruption vulnerabilit
7.8HIGH
 CVE-2024-8599
>= 2025 and < 2025.1.1
A maliciously crafted STP file when parsed in ACTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerabili
7.8HIGH
 CVE-2024-8598
>= 2025 and < 2025.1.1
A maliciously crafted STP file when parsed in ACTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerabili
7.8HIGH
 CVE-2024-8597
>= 2025 and < 2025.1.1
A maliciously crafted STP file when parsed in ASMDATAX230A.dll through Autodesk AutoCAD can force a Memory Corruption vulnerabilit
7.8HIGH
 CVE-2024-8596
>= 2025 and < 2025.1.1
A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerab
7.8HIGH
 CVE-2024-8595
>= 2025 and < 2025.1.1
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A
7.8HIGH
 CVE-2024-8594
>= 2025 and < 2025.1.1
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Heap-Based Overflow vulnerabili
7.8HIGH
 CVE-2024-8593
>= 2025 and < 2025.1.1
A maliciously crafted CATPART file, when parsed in ASMKERN230A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vuln
7.8HIGH
 CVE-2024-8592
>= 2024 and < 2024.1.6
A maliciously crafted CATPART file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnera
7.8HIGH
 CVE-2024-8591
>= 2025 and < 2025.1.1
A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Heap-Based Buffer Overflow vu
7.8HIGH
 CVE-2024-8590
>= 2025 and < 2025.1.1
A maliciously crafted 3DM file when parsed in atf_api.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A ma
7.8HIGH
 CVE-2024-8589
>= 2025 and < 2025.1.1
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerabili
7.8HIGH
 CVE-2024-8588
>= 2025 and < 2025.1.1
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerabili
7.8HIGH
 CVE-2024-7992
>= 2025 and < 2025.1.1
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based B
7.8HIGH
 CVE-2024-7991
>= 2025 and < 2025.1.1
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, may force an Out-of-Bound
7.8HIGH
 CVE-2024-8587
all versions
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based Buffer Overflow vul
7.8HIGH
 CVE-2024-7305
>= 2022 and < 2022.1.6
A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerabili
7.8HIGH
 CVE-2024-37007
>= 2022 and < 2022.1.5
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications, can cause a use-after-free vuln
7.8HIGH
 CVE-2024-37006
>= 2022 and < 2022.1.5
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption vu
7.8HIGH
 CVE-2024-37005
>= 2022 and < 2022.1.5
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can force an Out-of-Bound Read. A malic
7.8HIGH
 CVE-2024-37004
>= 2022 and < 2022.1.5
A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulner
7.8HIGH
 CVE-2024-37003
>= 2022 and < 2022.1.5
A maliciously crafted DWG and SLDPRT file, when parsed in opennurbs.dll and ODXSW_DLL.dll through Autodesk applications, can be us
7.8HIGH
 CVE-2024-36999
>= 2022 and < 2022.1.5
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Write. A ma
7.8HIGH
 CVE-2024-23159
>= 2022 and < 2022.1.5
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk applications, can be used to uninitialized v
7.8HIGH
 CVE-2024-23158
>= 2022 and < 2022.1.5
A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-
7.8HIGH
 CVE-2024-23157
>= 2022 and < 2022.1.5
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corr
7.8HIGH
 CVE-2024-23156
>= 2022 and < 2022.1.5
A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk applications, can lead to a memo
7.8HIGH
 CVE-2024-23155
>= 2022 and < 2022.1.5
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk applications, can be used to cause a Heap-
7.8HIGH
 CVE-2024-23154
>= 2022 and < 2022.1.5
A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to cause a Heap-based O
7.8HIGH
 CVE-2024-23153
>= 2022 and < 2022.1.5
A maliciously crafted MODEL file, when parsed in libodx.dll through Autodesk applications, can force an Out-of-Bounds Read. A mali
7.8HIGH
 CVE-2024-23152
>= 2022 and < 2022.1.5
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Read. A mal
7.8HIGH
 CVE-2024-23151
>= 2022 and < 2022.1.5
A maliciously crafted 3DM file, when parsed in ASMkern229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerab
7.8HIGH
 CVE-2024-23150
>= 2022 and < 2022.1.5
A maliciously crafted PRT file, when parsed in odxug_dll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerabil
7.8HIGH
 CVE-2024-37002
>= 2022 and < 2022.1.5
A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications, can be used to uninitialized variab
7.8HIGH
 CVE-2024-37001
>= 2022 and < 2022.1.5
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can be used to cause a Heap-based Over
7.8HIGH
 CVE-2024-37000
>= 2022 and < 2022.1.5
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnera
7.8HIGH
 CVE-2024-23149
>= 2022 and < 2022.1.5
A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications, can force an Out-of-Bound Read. A m
7.8HIGH
 CVE-2024-23148
>= 2022 and < 2022.1.5
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption vu
7.8HIGH
 CVE-2024-23147
>= 2022 and < 2022.1.5
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can
7.8HIGH
 CVE-2024-23146
>= 2022 and < 2022.1.5
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk AutoCAD, may force an Out-of-Bounds W
7.8HIGH
 CVE-2024-23145
>= 2022 and < 2022.1.5
A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bound Read. A mali
7.8HIGH
 CVE-2024-23144
>= 2022 and < 2022.1.5
A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bo
7.8HIGH
 CVE-2024-23143
>= 2022 and < 2022.1.5
A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll through Autodesk applications, c
7.8HIGH
 CVE-2024-23142
>= 2022 and < 2022.1.5
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through A
7.8HIGH
 CVE-2024-23141
>= 2022 and < 2022.1.5
A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerabil
7.8HIGH
 CVE-2024-23140
>= 2022 and < 2022.1.5
A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Autodesk applications, can force an
7.8HIGH
 CVE-2024-23138
>= 2021 and < 2021.1.4
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious
7.8HIGH
 CVE-2024-23137
>= 2021 and < 2021.1.4
A maliciously crafted STP or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to uninitialized
7.8HIGH
 CVE-2024-23136
>= 2021 and < 2021.1.4
A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untruste
7.8HIGH
 CVE-2024-23135
>= 2021 and < 2021.1.4
A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can be used in user-after-free vuln
7.8HIGH
 CVE-2024-23134
>= 2021 and < 2021.1.4
A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This
7.8HIGH
 CVE-2024-23133
>= 2021 and < 2021.1.4
A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk applications can lead to a memory corruption vulne
7.8HIGH
 CVE-2024-23132
>= 2021 and < 2021.1.4
A maliciously crafted STP file in atf_dwg_consumer.dll when parsed through Autodesk applications can lead to a memory corruption v
7.8HIGH
 CVE-2024-23131
>= 2021 and < 2021.1.4
A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll or ASMDATAX228A.dll through Aut
7.8HIGH
 CVE-2024-23130
>= 2021 and < 2021.1.4
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corr
7.8HIGH
 CVE-2024-23129
>= 2021 and < 2021.1.4
A maliciously crafted MODEL 3DM, STP, or SLDASM file, when in opennurbs.dll parsed through Autodesk applications, can lead to a me
7.8HIGH
 CVE-2024-23128
>= 2021 and < 2021.1.4
A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodesk applications, can lead to a m
7.8HIGH
 CVE-2024-23127
>= 2021 and < 2021.1.4
A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll through Autodesk applications,
7.8HIGH
 CVE-2024-23126
>= 2021 and < 2021.1.4
A maliciously crafted CATPART file when parsed CC5Dll.dll through Autodesk applications can be used to cause a Stack-based Overflo
7.8HIGH
 CVE-2024-23125
>= 2021 and < 2021.1.4
A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overf
7.8HIGH
 CVE-2024-23124
>= 2021 and < 2021.1.4
A maliciously crafted STP file, when parsed in ASMIMPORT228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulner
7.8HIGH
 CVE-2024-23123
>= 2021 and < 2021.1.4
A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bo
7.8HIGH
 CVE-2024-23122
>= 2021 and < 2021.1.4
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerabil
7.8HIGH
 CVE-2024-23121
>= 2021 and < 2021.1.4
A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerab
7.8HIGH
 CVE-2024-23120
>= 2021 and < 2021.1.4
A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may forc
7.8HIGH
 CVE-2024-0446
>= 2021 and < 2021.1.4
A maliciously crafted STP, CATPART or MODEL file, when parsed in ASMKERN228A.dll and ASMdatax229A.dll through Autodesk AutoCAD, ma
7.8HIGH
 CVE-2023-41140
< 2023.1.4
A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflo
7.8HIGH
 CVE-2023-41139
< 2023.1.4
A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer.
7.8HIGH
 CVE-2023-29076
< 2023.1.4
A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory cor
9.8CRITICAL
 CVE-2023-29075
< 2023.1.4
A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause an Out-Of-Bounds Write. A m
9.8CRITICAL
 CVE-2023-29074
< 2023.1.4
A maliciously crafted CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause an Out-Of-Bounds Write.
9.8CRITICAL
 CVE-2023-29073
< 2023.1.4
A maliciously crafted MODEL file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overf
9.8CRITICAL
 CVE-2023-29068
>= 2020 and < 2020.1.6
A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabiliti
7.8HIGH
 CVE-2023-25004
>= 2020 and < 2020.1.6
A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of
7.8HIGH
 CVE-2023-25003
>= 2020 and < 2020.1.6
A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / re
7.8HIGH
 CVE-2023-29067
>= 2023 and < 2023.1.3
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by writ
7.8HIGH
 CVE-2023-27915
>= 2023 and < 2023.1.3
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by read
7.8HIGH
 CVE-2023-27914
>= 2023 and < 2023.1.3
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer caus
7.8HIGH
 CVE-2023-27913
>= 2023 and < 2023.1.3
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to cause an Integer Overflow. A malicious
7.8HIGH
 CVE-2023-27912
>= 2023 and < 2023.1.3
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can force an Out-of-Bound Read. A malicious actor can
7.8HIGH
 CVE-2022-42944
all versions
A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil
7.8HIGH
 CVE-2022-42943
all versions
A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil
7.8HIGH
 CVE-2022-42942
all versions
A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil
7.8HIGH
 CVE-2022-42941
all versions
A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil
7.8HIGH
 CVE-2022-42940
all versions
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi
7.8HIGH
 CVE-2022-42939
all versions
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi
7.8HIGH
 CVE-2022-42938
all versions
A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi
7.8HIGH
 CVE-2022-42937
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-42936
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-42935
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-42934
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-42933
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-41310
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-41309
all versions
A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2021-40166
>= 2019 and < 2019.1.4
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already be
7.8HIGH
 CVE-2021-40165
>= 2019 and < 2019.1.4
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocate
7.8HIGH
 CVE-2021-40164
>= 2019 and < 2019.1.4
A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execu
7.8HIGH
 CVE-2021-40163
>= 2019 and < 2019.1.4
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processi
7.8HIGH
 CVE-2021-40162
>= 2019 and < 2019.1.4
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated b
7.8HIGH
 CVE-2022-33890
< 2022.1.3
A maliciously crafted PCT or DWF file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi
7.8HIGH
 CVE-2022-33889
< 2022.1.3
A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used t
7.8HIGH
 CVE-2022-33888
>= 2022 and < 2022.1.3
A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by
7.8HIGH
 CVE-2022-33887
>= 2022 and < 2022.1.3
A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled exception. An attacker can leverage t
7.8HIGH
 CVE-2022-33886
>= 2022 and < 2022.1.3
A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer while parsing through Autodesk AutoCA
7.8HIGH
 CVE-2022-33885
>= 2022 and < 2022.1.3
A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the
7.8HIGH
 CVE-2022-33884
>= 2020 and < 2020.1.6
Parsing a maliciously crafted X_B file can force Autodesk AutoCAD 2023 and 2022 to read beyond allocated boundaries. This vulnerab
7.5HIGH
 CVE-2022-33881
all versions
Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in
7.8HIGH
 CVE-2022-27871
all versions
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to
7.8HIGH
 CVE-2022-25788
>= 2022 and < 2022.1.2
A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated buffer while parsing JT files. Th
7.8HIGH
 CVE-2022-27530
>= 2019 and < 2019.1.4
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer
7.8HIGH
 CVE-2022-27529
>= 2019 and < 2019.1.4
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the alloca
7.8HIGH
 CVE-2022-25792
>= 2019 and < 2019.1.4
A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond
7.8HIGH
 CVE-2022-25791
>= 2019 and < 2019.1.4
A Memory Corruption vulnerability for DWF and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 m
7.8HIGH
 CVE-2022-25790
>= 2019 and < 2019.1.4
A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond
7.8HIGH
 CVE-2022-25789
>= 2019 and < 2019.1.4
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vul
7.8HIGH
 CVE-2021-40159
>= 2022 and < 2022.1.2
An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnera
7.8HIGH
 CVE-2021-40158
>= 2022 and < 2022.1.2
A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated
7.8HIGH
 CVE-2021-40161
< 2019.1.4
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.
7.8HIGH
 CVE-2021-40160
>= 2022 and < 2022.1.1
PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This
7.8HIGH
 CVE-2021-27043
>= 2019 and < 2019.1.3
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write i
7.8HIGH
 CVE-2021-27042
>= 2019 and < 2019.1.3
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists
7.8HIGH
 CVE-2021-27041
>= 2019 and < 2019.1.3
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. This vulnerability can be
7.8HIGH
 CVE-2021-27040
>= 2019 and < 2019.1.3
A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can
3.3LOW
 CVE-2019-7364
all versions
DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, Aut
7.8HIGH
 CVE-2019-7361
all versions
An attacker may convince a victim to open a malicious action micro (.actm) file that has serialized data, which may trigger a code
7.8HIGH
 CVE-2019-7360
all versions
An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018
7.8HIGH
 CVE-2019-7359
all versions
An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018
7.8HIGH
 CVE-2019-7358
all versions
An exploitable heap overflow vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018,
7.8HIGH
 CVE-2013-3665
all versions
Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote a
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin