Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2024/12/04 11:40 a.m.18 views

CVE-2024-8894 Out-of-bounds Write vulnerability in ODA SDK versions < 2025.10

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a...

8.1CVSS0.0007EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/12/04 11:40 a.m.8 views

CVE-2024-8894 Out-of-bounds Write vulnerability in ODA SDK versions < 2025.10

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a...

8.1CVSS7.5AI score0.0007EPSS
Exploits0References1
NVD
NVDadded 2024/09/30 9:15 p.m.12 views

CVE-2024-7675

A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

7.8CVSS0.0027EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/09/30 12:0 a.m.3 views

Autodesk Navisworks 缓冲区错误漏洞

Autodesk Navisworks is a 3D model review software for architecture, engineering, and construction from Autodesk, Inc. A buffer error vulnerability exists in Autodesk Navisworks version 2025, which stems from a maliciously crafted DWF file that can be forced to write out-of-bounds, and can be...

7.8CVSS7.4AI score0.00218EPSS
Exploits0References5
OSV
OSVadded 2022/01/25 8:15 p.m.2 views

CVE-2021-40167

A malicious crafted dwf or .pct file when consumed through DesignReview.exe application could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

7.8CVSS6AI score
Exploits0References1
OSV
OSVadded 2021/11/14 9:15 p.m.2 views

CVE-2021-43276

An Out-of-bounds Read vulnerability exists in Open Design Alliance ODA Viewer before 2022.8. Crafted data in a DWF file can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the...

7.8CVSS5.6AI score0.00367EPSS
Exploits0References1
Prion
Prionadded 2014/12/08 4:59 p.m.14 views

Code injection

The AdView.AdViewer.1 ActiveX control in Autodesk Design Review ADR before 2013 Hotfix 1 allows remote attackers to execute arbitrary code via a crafted DWF file...

6.8CVSS8.1AI score0.01311EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2014/12/08 4:0 p.m.55 views

CVE-2014-9268

The CVE-2014-9268 entry concerns Autodesk Design Review’s AdView.AdViewer.1 ActiveX control. Affected component: AdView.AdViewer ActiveX in ADR prior to 2013 Hotfix 1. Root cause: improper parsing of DWF files enables an unauthenticated, remote attacker to execute arbitrary code. Impact: remote c...

6.8CVSS7.8AI score0.01311EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder