CVE-2025-8894

>= 2024 and < 2024.1.8

A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A ma

7.8HIGH

CVE-2025-8893

>= 2024 and < 2024.1.8

A maliciously crafted PDF file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A m

7.8HIGH

CVE-2025-5048

all versions

A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force a Memory Corruption vulnerability. A mali

7.8HIGH

CVE-2025-5047

all versions

A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicio

7.8HIGH

CVE-2025-5046

all versions

A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A ma

7.8HIGH

CVE-2025-1276

>= 2023 and < 2023.1.7

A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability.

7.8HIGH

CVE-2025-1275

>= 2023 and < 2023.1.7

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulner

7.8HIGH

CVE-2024-9997

>= 2025 and < 2025.1.1

A maliciously crafted DWG file when parsed in acdb25.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A m

7.8HIGH

CVE-2024-9996

>= 2025 and < 2025.1.1

A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability

7.8HIGH

CVE-2024-9489

>= 2025 and < 2025.1.1

A maliciously crafted DWG file when parsed in ACAD.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A mal

7.8HIGH

CVE-2024-8896

>= 2025 and < 2025.1.1

A maliciously crafted DXF file when parsed in acdb25.dll through Autodesk AutoCAD can force to access a variable prior to initial

7.8HIGH

CVE-2024-7992

>= 2025 and < 2025.1.1

A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based B

7.8HIGH

CVE-2024-7991

>= 2025 and < 2025.1.1

A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, may force an Out-of-Bound

7.8HIGH

CVE-2024-7305

>= 2022 and < 2022.1.6

A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerabili

7.8HIGH

CVE-2024-23138

>= 2021 and < 2021.1.4

A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious

7.8HIGH

CVE-2023-41140

< 2023.1.4

A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overflo

7.8HIGH

CVE-2023-41139

< 2023.1.4

A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer.

7.8HIGH

CVE-2023-29076

< 2023.1.4

A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 could cause memory cor

9.8CRITICAL

CVE-2023-29075

< 2023.1.4

A maliciously crafted PRT file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause an Out-Of-Bounds Write. A m

9.8CRITICAL

CVE-2023-29074

< 2023.1.4

A maliciously crafted CATPART file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause an Out-Of-Bounds Write.

9.8CRITICAL

CVE-2023-29073

< 2023.1.4

A maliciously crafted MODEL file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to cause a Heap-Based Buffer Overf

9.8CRITICAL

CVE-2023-29068

>= 2020 and < 2020.1.6

A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabiliti

7.8HIGH

CVE-2023-25004

>= 2020 and < 2020.1.6

A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of

7.8HIGH

CVE-2023-25003

>= 2020 and < 2020.1.6

A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / re

7.8HIGH

CVE-2023-29067

>= 2023 and < 2023.1.3

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by writ

7.8HIGH

CVE-2023-27915

>= 2023 and < 2023.1.3

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by read

7.8HIGH

CVE-2023-27914

>= 2023 and < 2023.1.3

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer caus

7.8HIGH

CVE-2023-27913

>= 2023 and < 2023.1.3

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to cause an Integer Overflow. A malicious

7.8HIGH

CVE-2023-27912

>= 2023 and < 2023.1.3

A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can force an Out-of-Bound Read. A malicious actor can

7.8HIGH

CVE-2022-42944

all versions

A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil

7.8HIGH

CVE-2022-42943

all versions

A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil

7.8HIGH

CVE-2022-42942

all versions

A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil

7.8HIGH

CVE-2022-42941

all versions

A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabil

7.8HIGH

CVE-2022-42940

all versions

A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi

7.8HIGH

CVE-2022-42939

all versions

A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi

7.8HIGH

CVE-2022-42938

all versions

A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. Thi

7.8HIGH

CVE-2022-42937

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-42936

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-42935

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-42934

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-42933

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-41310

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-41309

all versions

A malicious crafted .dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2021-40166

>= 2019 and < 2019.1.4

A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already be

7.8HIGH

CVE-2021-40165

>= 2019 and < 2019.1.4

A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocate

7.8HIGH

CVE-2021-40164

>= 2019 and < 2019.1.4

A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execu

7.8HIGH

CVE-2021-40163

>= 2019 and < 2019.1.4

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processi

7.8HIGH

CVE-2021-40162

>= 2019 and < 2019.1.4

A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated b

7.8HIGH

CVE-2022-33890

< 2022.1.3

A maliciously crafted PCT or DWF file when consumed through DesignReview.exe application could lead to memory corruption vulnerabi

7.8HIGH

CVE-2022-33889

< 2022.1.3

A maliciously crafted GIF or JPEG files when parsed through Autodesk Design Review 2018, and AutoCAD 2023 and 2022 could be used t

7.8HIGH

CVE-2022-33888

>= 2022 and < 2022.1.3

A malicious crafted Dwg2Spd file when processed through Autodesk DWG application could lead to memory corruption vulnerability by

7.8HIGH

CVE-2022-33887

>= 2022 and < 2022.1.3

A maliciously crafted PDF file when parsed through Autodesk AutoCAD 2023 causes an unhandled exception. An attacker can leverage t

7.8HIGH

CVE-2022-33886

>= 2022 and < 2022.1.3

A maliciously crafted MODEL and SLDPRT file can be used to write beyond the allocated buffer while parsing through Autodesk AutoCA

7.8HIGH

CVE-2022-33885

>= 2022 and < 2022.1.3

A maliciously crafted X_B, CATIA, and PDF file when parsed through Autodesk AutoCAD 2023 and 2022 can be used to write beyond the

7.8HIGH

CVE-2022-33884

>= 2020 and < 2020.1.6

Parsing a maliciously crafted X_B file can force Autodesk AutoCAD 2023 and 2022 to read beyond allocated boundaries. This vulnerab

7.5HIGH

CVE-2022-33881

all versions

Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in

7.8HIGH

CVE-2022-27871

all versions

Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to

7.8HIGH

CVE-2022-25788

>= 2022 and < 2022.1.2

A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated buffer while parsing JT files. Th

7.8HIGH

CVE-2022-27530

>= 2019 and < 2019.1.4

A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer

7.8HIGH

CVE-2022-27529

>= 2019 and < 2019.1.4

A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the alloca

7.8HIGH

CVE-2022-25792

>= 2019 and < 2019.1.4

A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond

7.8HIGH

CVE-2022-25791

>= 2019 and < 2019.1.4

A Memory Corruption vulnerability for DWF and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 m

7.8HIGH

CVE-2022-25790

>= 2019 and < 2019.1.4

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond

7.8HIGH

CVE-2022-25789

>= 2019 and < 2019.1.4

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vul

7.8HIGH

CVE-2021-40159

>= 2022 and < 2022.1.2

An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnera

7.8HIGH

CVE-2021-40158

>= 2022 and < 2022.1.2

A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated

7.8HIGH

CVE-2021-40161

< 2019.1.4

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.

7.8HIGH

CVE-2021-40160

>= 2022 and < 2022.1.1

PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This

7.8HIGH

CVE-2021-27043

>= 2019 and < 2019.1.3

An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write i

7.8HIGH

CVE-2021-27042

>= 2019 and < 2019.1.3

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists

7.8HIGH

CVE-2021-27041

>= 2019 and < 2019.1.3

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. This vulnerability can be

7.8HIGH

CVE-2021-27040

>= 2019 and < 2019.1.3

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can

3.3LOW

CVE-2019-7364

all versions

DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, Aut

7.8HIGH

CVE-2019-7361

all versions

An attacker may convince a victim to open a malicious action micro (.actm) file that has serialized data, which may trigger a code

7.8HIGH

CVE-2019-7360

all versions

An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018

7.8HIGH

CVE-2019-7359

all versions

An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018

7.8HIGH

CVE-2019-7358

all versions

An exploitable heap overflow vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018,

7.8HIGH

CVE-2013-3665

all versions

Unspecified vulnerability in Autodesk AutoCAD through 2014, AutoCAD LT through 2014, and DWG TrueView through 2014 allows remote a

CVE-2005-4710

all versions

Unspecified vulnerability in multiple Autodesk and AutoCAD products and product families from 2006 and earlier allows remote attac