Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autodesk revit vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-4471
Directory traversal vulnerability in the CExpressViewerControl class in the DWF Viewer ActiveX control (AdView.dll 9.0.0.96), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote malicious users to overwrite arbitrary files via "..\" seq...
Autodesk Design Review 2009
Autodesk Revit Architecture 2009
Autodesk Dwf Viewer
1 EDB exploit
9.3
CVSSv2
CVE-2008-4472
The UpdateEngine class in the LiveUpdate ActiveX control (LiveUpdate16.DLL 17.2.56), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote malicious users to execute arbitrary programs via the second argument to the ApplyPatch method.
Autodesk Design Review 2009
Autodesk Revit Architecture 2009
Autodesk Dwf Viewer
1 EDB exploit
6.8
CVSSv2
CVE-2022-27871
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron before 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Autocad Plant 3d 2019
Autodesk Autocad Plant 3d 2020
Autodesk Autocad Mep 2019
Autodesk Autocad Mep 2020
Autodesk Autocad Mechanical 2019
Autodesk Autocad Mechanical 2020
Autodesk Autocad Map 3d 2019
Autodesk Autocad Map 3d 2020
Autodesk Autocad Electrical 2019
Autodesk Autocad Electrical 2020
Autodesk Advance Steel 2019
Autodesk Advance Steel 2020
Autodesk Autocad Architecture 2019
Autodesk Autocad Architecture 2020
Autodesk Autocad 2019
Autodesk Autocad 2020
Autodesk Autocad Lt 2019
Autodesk Autocad Lt 2020
Autodesk Autocad Civil 3d 2021
Autodesk Autocad Civil 3d 2022
Autodesk Autocad Civil 3d 2019
Autodesk Autocad Civil 3d 2020
6.8
CVSSv2
CVE-2021-40160
PDFTron before 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This vulnerability can be exploited to execute arbitrary code.
Autodesk Revit
Autodesk Navisworks
Autodesk Autocad Lt
Autodesk Autocad
Autodesk Civil 3d
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Electrical
Autodesk Autocad Architecture
Autodesk Advance Steel
Autodesk Design Review 2018
4.6
CVSSv2
CVE-2005-4710
Unspecified vulnerability in multiple Autodesk and AutoCAD products and product families from 2006 and previous versions allows remote malicious users to "gain inappropriate access to another local user's computer," aka ID DL5549329.
Autodesk Revit 8
Autodesk Building Systems 2006
Autodesk Autocad Electrical 2005
Autodesk Autocad Lt 2005
Autodesk Autocad 2005
Autodesk Survey 2005
Autodesk Autocad 2006
Autodesk 3ds Max 7
Autodesk Civil Design 2005
Autodesk Inventor 10
Autodesk Revit 7
Autodesk Autocad Electrical 2006
Autodesk Revit Structure 6
Autodesk Revit Structure 8.1
Autodesk Architectural Desktop 2006
Autodesk Autocad Lt 2006
Autodesk Land Desktop 2006
Autodesk Raster Design 2006
Autodesk Survey 2006
Autodesk Autocad Mechanical 2005
Autodesk Map 3d 2005
Autodesk Autocad Civil 3d 2005
4.4
CVSSv2
CVE-2021-40161
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version.
Autodesk Revit
Autodesk Navisworks
Autodesk Advance Steel
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Civil 3d
Autodesk Autocad 2020
Autodesk Autocad 2021
Autodesk Autocad 2022
Autodesk Autocad Lt 2021
Autodesk Autocad Lt 2020
Autodesk Design Review 2018
NA
CVE-2023-25002
A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.
Autodesk Navisworks 2022
Autodesk Revit 2022
Autodesk 3ds Max 2022
Autodesk Navisworks 2023
Autodesk 3ds Max 2023
Autodesk Revit 2023
Autodesk Vred 2023
NA
CVE-2023-29068
A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
Autodesk Autocad
Autodesk Autocad Advance Steel
Autodesk Autocad Architecture
Autodesk Autocad Civil 3d
Autodesk Autocad Electrical
Autodesk Autocad Lt
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Infraworks
Autodesk Maya Usd
Autodesk Navisworks
Autodesk Inventor
Autodesk Vred
Autodesk Alias
Autodesk Revit
NA
CVE-2023-25004
A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these vulnerabilities may lead to code execution.
Autodesk Autocad
Autodesk Autocad Advance Steel
Autodesk Autocad Architecture
Autodesk Autocad Civil 3d
Autodesk Autocad Electrical
Autodesk Autocad Lt
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Infraworks
Autodesk Maya Usd
Autodesk Navisworks
Autodesk Inventor
Autodesk Vred
Autodesk Alias
Autodesk Revit
NA
CVE-2023-25003
A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / read vulnerabilities. Exploitation of this vulnerability may lead to code execution.
Autodesk Autocad
Autodesk Autocad Advance Steel
Autodesk Autocad Architecture
Autodesk Autocad Civil 3d
Autodesk Autocad Electrical
Autodesk Autocad Lt
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Infraworks
Autodesk Maya Usd
Autodesk Navisworks
Autodesk Inventor
Autodesk Vred
Autodesk Alias
Autodesk Revit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »