Vulnerabilities > Autodesk

DATE CVE VULNERABILITY TITLE RISK
2023-05-12 CVE-2023-25005 Uncontrolled Search Path Element vulnerability in Autodesk Infraworks
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL files could lead to a resource injection vulnerability.
local
low complexity
autodesk CWE-427
7.8
7.8
2023-05-12 CVE-2023-25006 Use After Free vulnerability in Autodesk 3DS MAX USD
A malicious actor may convince a user to open a malicious USD file that may trigger a use-after-free vulnerability which could result in code execution.
local
low complexity
autodesk CWE-416
7.8
7.8
2023-05-12 CVE-2023-25007 Access of Uninitialized Pointer vulnerability in Autodesk 3DS MAX USD
A malicious actor may convince a user to open a malicious USD file that may trigger an uninitialized pointer which could result in code execution.
local
low complexity
autodesk CWE-824
7.8
7.8
2023-05-12 CVE-2023-25008 Out-of-bounds Read vulnerability in Autodesk 3DS MAX USD
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of-bounds read vulnerability which could result in code execution.
local
low complexity
autodesk CWE-125
7.8
7.8
2023-05-12 CVE-2023-25009 Out-of-bounds Write vulnerability in Autodesk 3DS MAX USD
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of-bounds write vulnerability which could result in code execution.
local
low complexity
autodesk CWE-787
7.8
7.8
2023-04-17 CVE-2023-25010 Improper Initialization vulnerability in Autodesk Maya USD
A malicious actor may convince a victim to open a malicious USD file that may trigger an uninitialized variable which may result in code execution.
local
low complexity
autodesk CWE-665
7.8
7.8
2023-04-17 CVE-2023-27906 Out-of-bounds Read vulnerability in Autodesk Maya USD
A malicious actor may convince a victim to open a malicious USD file that may trigger an out-of-bounds read vulnerability which may result in code execution.
local
low complexity
autodesk CWE-125
7.8
7.8
2023-04-17 CVE-2023-27907 Out-of-bounds Write vulnerability in Autodesk Maya USD
A malicious actor may convince a victim to open a malicious USD file that may trigger an out-of-bounds write vulnerability which may result in code execution.
local
low complexity
autodesk CWE-787
7.8
7.8
2023-04-17 CVE-2023-27909 Out-of-bounds Write vulnerability in Autodesk FBX Software Development KIT
An Out-Of-Bounds Write Vulnerability in Autodesk® FBX® SDK version 2020 or prior may lead to code execution through maliciously crafted FBX files or information disclosure.
local
low complexity
autodesk CWE-787
7.8
7.8
2023-04-17 CVE-2023-27910 Out-of-bounds Write vulnerability in Autodesk FBX Software Development KIT
A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution.
local
low complexity
autodesk CWE-787
7.8
7.8