Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autodesk vulnerabilities and exploits
(subscribe to this query)
392
VMScore
CVE-2019-7365
DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and previous versions. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the sys...
Autodesk Autodesk Desktop
1 Github repository
605
VMScore
CVE-2019-7362
DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a DLL preloading vulnerability, which may result in code execution.
Autodesk Design Review 2011
Autodesk Design Review 2013
Autodesk Design Review 2012
Autodesk Design Review 2018
605
VMScore
CVE-2019-7363
Use-after-free vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a use-after-free vulnerability, which may result in code execution.
Autodesk Design Review 2012
Autodesk Design Review 2013
Autodesk Design Review 2018
Autodesk Design Review 2011
NA
CVE-2022-41305
A maliciously crafted PKT file when consumed through SubassemblyComposer.exe application could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the curren...
Autodesk Subassembly Composer 2020
Autodesk Subassembly Composer 2021
Autodesk Subassembly Composer 2022
Autodesk Subassembly Composer 2023
NA
CVE-2022-41307
A maliciously crafted PKT file when consumed through SubassemblyComposer.exe application could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current...
Autodesk Subassembly Composer 2020
Autodesk Subassembly Composer 2021
Autodesk Subassembly Composer 2022
Autodesk Subassembly Composer 2023
NA
CVE-2022-41308
A maliciously crafted PKT file when consumed through SubassemblyComposer.exe application could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current...
Autodesk Subassembly Composer 2020
Autodesk Subassembly Composer 2021
Autodesk Subassembly Composer 2022
Autodesk Subassembly Composer 2023
935
VMScore
CVE-2008-4471
Directory traversal vulnerability in the CExpressViewerControl class in the DWF Viewer ActiveX control (AdView.dll 9.0.0.96), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote malicious users to overwrite arbitrary files via "..\" seq...
Autodesk Design Review 2009
Autodesk Dwf Viewer
Autodesk Revit Architecture 2009
1 EDB exploit
935
VMScore
CVE-2008-4472
The UpdateEngine class in the LiveUpdate ActiveX control (LiveUpdate16.DLL 17.2.56), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote malicious users to execute arbitrary programs via the second argument to the ApplyPatch method.
Autodesk Dwf Viewer
Autodesk Revit Architecture 2009
Autodesk Design Review 2009
1 EDB exploit
NA
CVE-2023-25001
A maliciously crafted SKP file in Autodesk Navisworks 2023 and 2022 be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.
Autodesk Navisworks 2022
Autodesk Navisworks 2023
828
VMScore
CVE-2014-3938
Integer overflow in Autodesk SketchBook Pro prior to 6.2.6 allows remote malicious users to execute arbitrary code via crafted layer mask data in a PSD file, which triggers a heap-based buffer overflow.
Autodesk Sketchbook Pro 6.2.4
Autodesk Sketchbook Pro
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »