CVE-2022-25790 - Autodesk Autocad Architecture, Autodesk Autocad and Autodesk Advance Steel

April 11, 2022

Critical 7.8

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.

Affected software

Autodesk Autocad Architecture

Autodesk Autocad

Autodesk Advance Steel

Autodesk Autocad Map 3d

Autodesk Navisworks

Autodesk Civil 3d

Autodesk Autocad Electrical

Autodesk Autocad Mep

Autodesk Autocad Mechanical

Autodesk Autocad Plant 3d

Autodesk Autocad Lt

Reference links

https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0005

CVE-2022-25790 - Autodesk Autocad Architecture, Autodesk Autocad and Autodesk Advance Steel

Affected software

Reference links

Get alerted to vulnerabilities in your software