9 matches found
Autodesk Navisworks Freedom 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)
The version of Autodesk Navisworks Freedom installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, c...
Autodesk Navisworks Manage 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)
The version of Autodesk Navisworks Manage installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, ca...
CVE-2024-7675 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...
CVE-2024-7675
CVE-2024-7675 affects Autodesk Navisworks (Navisworks Freedom/Manage/Simulate) where parsing a malicious DWF file triggers a Use-After-Free in w3dtk.dll, potentially allowing crash or arbitrary code execution in the current process. Exploitation is described as local with user interaction require...
CVE-2024-7673 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...
CVE-2024-7673 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...
CVE-2024-7670 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
PT-2024-7804 · Autodesk · Autodesk Navisworks
Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. This issue allows a malicious actor to cause a crash or execute...
PT-2024-7806 · Autodesk · Autodesk Navisworks
Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks affected versions not specified Description: A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. This can allow a malicious actor to cause a crash, read...