A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HAutodesk 3ds Max
APPAutodesk2026Autodesk Advance Steel
APPAutodesk2026Autodesk Autocad
APPAutodesk2026Autodesk Autocad Architecture
APPAutodesk2026Autodesk Autocad Electrical
APPAutodesk2026Autodesk Autocad Map 3d
APPAutodesk2026Autodesk Autocad Mechanical
APPAutodesk2026Autodesk Autocad Mep
APPAutodesk2026Autodesk Autocad Plant 3d
APPAutodesk2026Autodesk Civil 3d
APPAutodesk2026Autodesk Infraworks
APPAutodesk2026Autodesk Inventor
APPAutodesk2026Autodesk Revit
APPAutodesk2026Autodesk Revit Lt
APPAutodesk2026Autodesk Shared Components
APPAutodesk< 2026.6Autodesk Vault
APPAutodesk2026
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDoSMemory
CWE
Related vulnerabilities
CVE-2023-29075CRITICAL9.8PL ✓ten sam produkt
Out-Of-Bounds Write w Autodesk AutoCAD przy parsowaniu pliku PRT
CVE-2023-29076CRITICAL9.8PL ✓ten sam produkt
Autodesk AutoCAD — uszkodzenie pamięci przy parsowaniu plików 3D (RCE)
CVE-2023-29073CRITICAL9.8PL ✓ten sam produkt
Heap-Based Buffer Overflow w Autodesk AutoCAD przy parsowaniu pliku MODEL
CVE-2023-29074CRITICAL9.8PL ✓ten sam produkt
Autodesk AutoCAD: Out-Of-Bounds Write przy parsowaniu pliku CATPART
CVE-2026-7451HIGH7.8ten sam produkt
A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnera...