Latest CVE Feed
-
8.8
HIGHCVE-2024-23140
A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbit... Read more
- Published: Jun. 25, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23138
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the ... Read more
Affected Products : autocad advance_steel autocad_architecture autocad_electrical autocad_lt autocad_map_3d autocad_mechanical autocad_mep autocad_plant_3d civil_3d +5 more products- Published: Mar. 18, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23136
A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23135
A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23134
A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.... Read more
Affected Products : autocad advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_map_3d autocad_mechanical autocad_mep autocad_plant_3d civil_3d +2 more products- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23133
A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk applications can lead to a memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23131
A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll or ASMDATAX228A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjuncti... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23130
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can lead to co... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23129
A maliciously crafted MODEL 3DM, STP, or SLDASM file, when in opennurbs.dll parsed through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can l... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23128
A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, in conjunction with other vulnerabilities, can ... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23127
A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensiti... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23126
A maliciously crafted CATPART file when parsed CC5Dll.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the ... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23125
A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in th... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23124
A maliciously crafted STP file, when parsed in ASMIMPORT228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23123
A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execu... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23122
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in ... Read more
- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23121
A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code i... Read more
Affected Products : autocad advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_map_3d autocad_mechanical autocad_mep autocad_plant_3d civil_3d +2 more products- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-23120
A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corrup... Read more
Affected Products : autocad advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_map_3d autocad_mechanical autocad_mep autocad_plant_3d civil_3d +2 more products- Published: Feb. 22, 2024
- Modified: Aug. 26, 2025
-
7.8
HIGHCVE-2024-22029
Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root... Read more
Affected Products :- Published: Oct. 16, 2024
- Modified: Aug. 26, 2025
-
8.8
HIGHCVE-2024-21976
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.... Read more
Affected Products : ryzen_ai_software- Published: Nov. 12, 2024
- Modified: Aug. 26, 2025