CVE-2025-64332

A flaw was found in Suricata. This vulnerability allows a denial of service DoS via SWF Small Web Format decompression...

CVE-2025-1658

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

PT-2025-14102 · Autodesk · Autodesk Navisworks

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: The issue arises from a maliciously crafted DWFX file being parsed through Autodesk Navisworks, leading to a Memory Corruption vulnerability. This can be exploited by a maliciou...

Autodesk Navisworks 缓冲区错误漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Navisworks that originates from parsing a specially crafted DWFX file resulting in memory corruption that could...

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom; the software for modeling and analyzing 3D models in Autodesk Navisworks Simulate; and the software for analyzing, coordinating, and verifying 3D models and project data in Autodesk Navisworks Manage. This allows a malicious individual to cause service interruptions or execute arbitrary code.

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom, as well as the software for modeling, analyzing, and coordinating 3D models and project data in Autodesk Navisworks Manage, is related to a buffer overflow in the dynamic...

CVE-2024-12178

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

Autodesk Navisworks 安全漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Navisworks that originates from an out-of-bounds write that can be enforced when parsing a maliciously crafted DWF...

Autodesk Navisworks 缓冲区错误漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering, and construction from Autodesk, Inc. A buffer error vulnerability exists in Autodesk Navisworks, which originates from parsing a maliciously crafted DWF file can be used to cause a heap overflow, which can be exploit...

Autodesk Navisworks 安全漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Navisworks version 2025, which originates from a maliciously crafted DWF file that can cause an out-of-bounds writ...

PT-2024-9974 · Autodesk · Autodesk Navisworks Manage +2

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks Freedom affected versions not specified Autodesk Navisworks Simulate affected versions not specified Autodesk Navisworks Manage affected versions not specified Description: A maliciously crafted DWFX file, when parsed...

Autodesk Navisworks 安全漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Navisworks version 2025, which originates from a maliciously crafted DWFX file that triggers an out-of-bounds writ...

PT-2024-9972 · Autodesk · Autodesk Navisworks Manage +2

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks Freedom affected versions not specified Autodesk Navisworks Simulate affected versions not specified Autodesk Navisworks Manage affected versions not specified Description: A maliciously crafted DWF file, when parsed throu...

Autodesk Navisworks 资源管理错误漏洞

Autodesk Navisworks is 3D model review software for architecture, engineering, and construction from Autodesk, Inc. Autodesk Navisworks version 2025 suffers from a Resource Management Error vulnerability that originates from a maliciously crafted DWF file that may force a post-release reuse...

Autodesk Navisworks 缓冲区错误漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction from Autodesk, Inc. in the United States. A buffer error vulnerability exists in Autodesk Navisworks version 2025, which stems from a maliciously crafted DWF file that could force a heap-based buffer...

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from the US-based Autodesk Corporation. Autodesk AutoCAD suffers from a buffer error vulnerability that originates when a maliciously crafted DWF file can be forced to write out-of-bounds when parsed, which can be exploited by an...

PT-2024-7806 · Autodesk · Autodesk Navisworks

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. This can allow a malicious actor to cause a crash, read...

PT-2024-7804 · Autodesk · Autodesk Navisworks

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. This issue allows a malicious actor to cause a crash or execute...

Autodesk Design Review 缓冲区错误漏洞

Autodesk Design Review ADR is a suite of AutoCAD drafting software assistance software from the American company Autodesk. The software supports viewing, marking, measuring, printing, and tracking changes to 2D and 3D design files. A security vulnerability exists in Autodesk Design Review version...

CVE-2022-27528

A maliciously crafted DWFX and SKP files in Autodesk Navisworks 2022 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...

CVE-2022-25789

A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution...