Autodesk Revit 2023.x < 2023.1.7 / 2024.x < 2024.3.2 / 2025.x < 2025.4.1

The version of Autodesk Revit installed on the remote host is prior to 2023.1.7 / 2024.3.2 / 2025.4.1. It is, therefore, affected by a remote code execution vulnerability as referenced in ADSK-SA-2025-0007. - A maliciously crafted RCS file, when parsed through Autodesk Revit, can force an...

A Cascade of Insecure Architectures: Axis Plugin Design Flaw Expose Select Autodesk Revit Users to Supply Chain Risk

We discovered Azure Storage Account credentials exposed in Axis Communications’ Autodesk Revit plugin, allowing unauthorized modification of cloud-hosted files. This exposure, combined with vulnerabilities in Autodesk Revit, could enable supply-chain attacks targeting end users...

EUVD-2024-34396

Malicious code in bioql PyPI...

EUVD-2024-34393

Malicious code in bioql PyPI...

EUVD-2025-11002

Malicious code in bioql PyPI...

EUVD-2025-20991

Malicious code in bioql PyPI...

EUVD-2025-22336

Malicious code in bioql PyPI...

EUVD-2024-34399

Malicious code in bioql PyPI...

EUVD-2025-16683

Malicious code in bioql PyPI...

EUVD-2024-48824

Malicious code in bioql PyPI...

EUVD-2025-10997

Malicious code in bioql PyPI...

EUVD-2024-48823

Malicious code in bioql PyPI...

EUVD-2025-20992

Malicious code in bioql PyPI...

CVE-2025-8354

A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Type Confusion vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2025-8354

A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Type Confusion vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2025-8354

A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Type Confusion vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2025-8354 RFA File Parsing Type Confusion Vulnerability

A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Type Confusion vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

Autodesk Revit RFA File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RFA...

Autodesk Revit 安全漏洞

Autodesk Revit is a suite of building information modeling software from the American company Autodesk. A security vulnerability exists in Autodesk Revit that originates from an out-of-bounds write when parsing a specially crafted PDF file, which could result in a crash, data corruption, or the...

Autodesk Revit 安全漏洞

Autodesk Revit is a suite of building information modeling software from the American company Autodesk. A security vulnerability exists in Autodesk Revit that originates from a heap buffer overflow when parsing specially crafted PDF files, which could lead to a crash, read sensitive data, or...