Lucene search
K

165 matches found

ATTACKERKB
ATTACKERKB
added 2025/07/10 11:31 a.m.2 views

CVE-2025-5040

A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00169EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/07/10 11:31 a.m.9 views

CVE-2025-5040 RTE File Parsing Heap-Based Overflow Vulnerability

A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS0.00169EPSS
Exploits0References2
CVE
CVE
added 2025/07/10 11:31 a.m.23 views

CVE-2025-5040

Autodesk Revit is affected by CVE-2025-5040: parsing a malicious RTE file can trigger a Heap-Based Overflow in the RTE parser, potentially causing a crash, reading sensitive data, or executing arbitrary code in the current process. Several connected sources corroborate heap overflow/RCE vectors v...

7.8CVSS7AI score0.00169EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/07/10 11:30 a.m.4 views

CVE-2025-5037

A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00351EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/10 11:30 a.m.3 views

CVE-2025-5037 RFA File Parsing Memory Corruption Vulnerability

A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS7.1AI score0.00351EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/10 11:30 a.m.8 views

CVE-2025-5037 RFA File Parsing Memory Corruption Vulnerability

A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS0.00351EPSS
Exploits0References2
CVE
CVE
added 2025/07/10 11:30 a.m.37 views

CVE-2025-5037

CVE-2025-5037 affects Autodesk Revit; a maliciously crafted RFA/RTE/RVT file can trigger a memory corruption vulnerability, enabling arbitrary code execution in the current process. The CVSS vector in the initial entry indicates local access, user interaction required, and high impact to confiden...

7.8CVSS7.1AI score0.00351EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.6 views

Autodesk Revit 安全漏洞

Autodesk Revit is a suite of building information modeling software from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Revit that stems from parsing a malicious RTE file could lead to a heap overflow...

7.8CVSS6.3AI score0.00169EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.3 views

PT-2025-29079

Autodesk Revit and Affected Versions Autodesk Revit affected versions not specified Description Autodesk Revit is susceptible to a flaw related to the parsing of RFA, RTE, and RVT files. A specially crafted malicious file, when processed by Autodesk Revit, can lead to a memory corruption issue...

7.8CVSS7.7AI score0.00351EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.4 views

PT-2025-29080 · Autodesk · Autodesk Revit

Name of the Vulnerable Software and Affected Versions: Autodesk Revit affected versions not specified Description: A maliciously crafted RTE file, when parsed by Autodesk Revit, can trigger a Heap-Based Overflow. An attacker can exploit this issue to cause a crash, potentially read sensitive data...

7.8CVSS6.9AI score0.00169EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.4 views

Autodesk Revit 安全漏洞

Autodesk Revit is a suite of building information modeling software from the American company Autodesk. A security vulnerability exists in Autodesk Revit that originates from parsing a malicious RFA file that could lead to memory corruption...

7.8CVSS6.4AI score0.00351EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2025/06/06 12:0 a.m.12 views

Autodesk Revit RFA File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Revit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RFA...

7.8CVSS7.2AI score0.00169EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/06 12:0 a.m.18 views

Autodesk Revit 2023.x < 2023.1.8 / 2024.x < 2024.3.3 / 2025.x < 2025.4.2 / 2026.x < 2026.1 RCE

The version of Autodesk Revit installed on the remote host is prior to 2023.1.8 / 2024.3.3 / 2025.4.2 / 2026.1. It is, therefore, affected by a remote code execution vulnerability. A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerabilit...

7.8CVSS7.8AI score0.00169EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.8 views

The vulnerability of Autodesk Revit software for building information modeling allows a perpetrator to cause service failures, gain unauthorized access to protected information, and execute arbitrary code within the context of the current process.

The vulnerability of Autodesk Revit software for building information modeling involves the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause service failures, gain unauthorized access to protected information, and execute arbitrary code within the...

7.8CVSS7.6AI score0.00169EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/04 5:14 p.m.18 views

CVE-2025-5036

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.7AI score0.00169EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/06/02 5:15 p.m.2 views

CVE-2025-5036

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00169EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/06/02 5:15 p.m.4 views

CVE-2025-5036

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00169EPSS
Exploits0References2
NVD
NVD
added 2025/06/02 5:15 p.m.14 views

CVE-2025-5036

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS0.00169EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/02 4:55 p.m.6 views

CVE-2025-5036 RFA File Parsing Use-After-Free Vulnerability

A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.7AI score0.00169EPSS
Exploits0References2
CVE
CVE
added 2025/06/02 4:55 p.m.64 views

CVE-2025-5036

Autodesk Revit is affected by CVE-2025-5036 due to a Use-After-Free in RFA file parsing. A maliciously crafted RFA file linked or imported into Revit can crash the process, read sensitive data, or execute arbitrary code in the current process. Exploitation requires user interaction and local acce...

7.8CVSS7.7AI score0.00169EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder