CVE-2025-5043 3DM File Parsing Heap-Based Overflow Vulnerability

🗓️ 29 Jul 2025 17:52:37Reported by autodeskType

Vulnerability in Autodesk products due to heap-based overflow from crafted 3DM files can lead to crashes.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2025-5043	29 Jul 202517:52	–	attackerkb
Tenable Nessus	Autodesk Multiple Vulnerabilities (AutoCAD) (adsk-sa-2025-0015)	24 Apr 202600:00	–	nessus
BDU FSTEC	Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.	30 Jul 202500:00	–	bdu_fstec
Circl	CVE-2025-5043	29 Jul 202503:00	–	circl
CNNVD	Autodesk多款产品安全漏洞	29 Jul 202500:00	–	cnnvd
CVE	CVE-2025-5043	29 Jul 202517:52	–	cve
EUVD	EUVD-2025-23032	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Autodesk AutoCAD	30 Jul 202508:04	–	ncsc
NVD	CVE-2025-5043	29 Jul 202518:15	–	nvd
OSV	CVE-2025-5043	29 Jul 202518:15	–	osv

[
  {
    "vendor": "Autodesk",
    "product": "Shared Components",
    "versions": [
      {
        "status": "affected",
        "version": "1.6.2.11",
        "lessThan": "1.7.0.10",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:2.3:a:autodesk:shared_components:2026.3:1.6.2.11:*:*:*:*:*:*"
    ]
  },
  {
    "vendor": "Autodesk",
    "product": "AutoCAD",
    "versions": [
      {
        "status": "affected",
        "version": "2025",
        "lessThan": "2025.1.3",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2024",
        "lessThan": "2024.1.8",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2023",
        "lessThan": "2023.1.8",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:2.3:a:autodesk:autocad:2025:*:*:*:*:*:*:*",
      "cpe:2.3:a:autodesk:autocad:2024:*:*:*:*:*:*:*",
      "cpe:2.3:a:autodesk:autocad:2023:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
autodesk	www.autodesk.com/products/autodesk-access/overview
autodesk	www.autodesk.com/trust/security-advisories/adsk-sa-2025-0015

04 May 2026 13:57Current

CVSS 3.17.8

EPSS0.0014

CWE-122