Lucene search

CVE-2024-12191

🗓️ 17 Dec 2024 16:24:15Reported by autodeskType

CVE-2024-12191 in Autodesk Navisworks allows Out-of-Bounds Write via malicious DWFX file parsing.

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2024-12191 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software	17 Dec 202415:17	–	cvelist
Vulnrichment	CVE-2024-12191 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software	17 Dec 202415:17	–	vulnrichment
NVD	CVE-2024-12191	17 Dec 202416:15	–	nvd
Tenable Nessus	Autodesk Navisworks Freedom 25.0.x < 2025.4 Multiple Vulnerabilities (adsk-sa-2024-0027)	20 Dec 202400:00	–	nessus
Tenable Nessus	Autodesk Navisworks Manage 25.0.x < 2025.4 Multiple Vulnerabilities (adsk-sa-2024-0027)	20 Dec 202400:00	–	nessus
Tenable Nessus	Autodesk Navisworks Simulate 25.0.x < 2025.4 Multiple Vulnerabilities (adsk-sa-2024-0027)	20 Dec 202400:00	–	nessus

[
  {
    "cpe": [
      "cpe:2.3:a:autodesk:navisworks_freedom:2025:*:*:*:*:windows:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Navisworks Freedom",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "2025.4",
        "status": "affected",
        "version": "2025",
        "versionType": "custom"
      }
    ]
  },
  {
    "cpe": [
      "cpe:2.3:a:autodesk:navisworks_simulate:2025:*:*:*:*:windows:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Navisworks Simulate",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "2025.4",
        "status": "affected",
        "version": "2025",
        "versionType": "custom"
      }
    ]
  },
  {
    "cpe": [
      "cpe:2.3:a:autodesk:navisworks_manage:2025:*:*:*:*:windows:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Navisworks Manage",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "2025.4",
        "status": "affected",
        "version": "2025",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
autodesk	www.autodesk.com/trust/security-advisories/adsk-sa-2024-0027

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Dec 2024 16:15Current

7.8High risk

Vulners AI Score7.8

CVSS37.8

EPSS0.0004

SSVC

CWE-787