Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.22 views

Autodesk Navisworks Freedom 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Freedom installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, c...

7.8CVSS6.2AI score0.00229EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/10/11 12:0 a.m.20 views

Autodesk Navisworks Manage 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Manage installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, ca...

7.8CVSS6.2AI score0.00229EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/09/30 8:30 p.m.19 views

CVE-2024-7675 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

7.8CVSS0.00213EPSS
Exploits0References1
CVE
CVE
added 2024/09/30 8:30 p.m.69 views

CVE-2024-7675

CVE-2024-7675 affects Autodesk Navisworks (Navisworks Freedom/Manage/Simulate) where parsing a malicious DWF file triggers a Use-After-Free in w3dtk.dll, potentially allowing crash or arbitrary code execution in the current process. Exploitation is described as local with user interaction require...

7.8CVSS7.8AI score0.00213EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/30 8:29 p.m.11 views

CVE-2024-7673 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

7.8CVSS7.8AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/30 8:29 p.m.21 views

CVE-2024-7673 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

7.8CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/30 8:25 p.m.13 views

CVE-2024-7670 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.7AI score0.00209EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.4 views

PT-2024-7804 · Autodesk · Autodesk Navisworks

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. This issue allows a malicious actor to cause a crash or execute...

7.8CVSS7.8AI score0.00213EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.3 views

PT-2024-7806 · Autodesk · Autodesk Navisworks

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. This can allow a malicious actor to cause a crash, read...

7.8CVSS7.6AI score0.00209EPSS
Exploits0References11
Rows per page
Query Builder