Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:39 a.m.10 views

CVE-2024-7670

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.2AI score0.00208EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.22 views

Autodesk Navisworks Freedom 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Freedom installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, c...

7.8CVSS6.2AI score0.00228EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.21 views

Autodesk Navisworks Manage 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Manage installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, ca...

7.8CVSS6.2AI score0.00228EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.27 views

Autodesk Navisworks Simulate 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Simulate installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks,...

7.8CVSS6.2AI score0.00228EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/09/30 8:25 p.m.13 views

CVE-2024-7670 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.7AI score0.00208EPSS
Exploits0References1
Rows per page
Query Builder