133 matches found
Autodesk Revit RTE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RTE...
Autodesk Revit RVT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RVT...
Autodesk Revit RVT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RVT...
CVE-2025-5040
A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-5037
A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2025-5040
A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-5037
A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2025-5037
A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2025-5040
A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-5040
Autodesk Revit is affected by CVE-2025-5040: parsing a malicious RTE file can trigger a Heap-Based Overflow in the RTE parser, potentially causing a crash, reading sensitive data, or executing arbitrary code in the current process. Several connected sources corroborate heap overflow/RCE vectors v...
CVE-2025-5040 RTE File Parsing Heap-Based Overflow Vulnerability
A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-5037 RFA File Parsing Memory Corruption Vulnerability
A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2025-5037 RFA File Parsing Memory Corruption Vulnerability
A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2025-5037
CVE-2025-5037 affects Autodesk Revit; a maliciously crafted RFA/RTE/RVT file can trigger a memory corruption vulnerability, enabling arbitrary code execution in the current process. The CVSS vector in the initial entry indicates local access, user interaction required, and high impact to confiden...
Autodesk Revit 安全漏洞
Autodesk Revit is a suite of building information modeling software from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Revit that stems from parsing a malicious RTE file could lead to a heap overflow...
Autodesk Revit 安全漏洞
Autodesk Revit is a suite of building information modeling software from the American company Autodesk. A security vulnerability exists in Autodesk Revit that originates from parsing a malicious RFA file that could lead to memory corruption...
PT-2025-29079
Autodesk Revit and Affected Versions Autodesk Revit affected versions not specified Description Autodesk Revit is susceptible to a flaw related to the parsing of RFA, RTE, and RVT files. A specially crafted malicious file, when processed by Autodesk Revit, can lead to a memory corruption issue...
PT-2025-29080 · Autodesk · Autodesk Revit
Name of the Vulnerable Software and Affected Versions: Autodesk Revit affected versions not specified Description: A maliciously crafted RTE file, when parsed by Autodesk Revit, can trigger a Heap-Based Overflow. An attacker can exploit this issue to cause a crash, potentially read sensitive data...
Autodesk Revit RFA File Parsing Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RFA...
Autodesk Revit 2023.x < 2023.1.8 / 2024.x < 2024.3.3 / 2025.x < 2025.4.2 / 2026.x < 2026.1 RCE
The version of Autodesk Revit installed on the remote host is prior to 2023.1.8 / 2024.3.3 / 2025.4.2 / 2026.1. It is, therefore, affected by a remote code execution vulnerability. A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerabilit...