ГлавнаяУязвимости → CVE-2025-5046
7.8высокая

CVE-2025-5046

Описание

A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Затрагиваемое ПО
Autodesk Advance steelAutodesk AutocadAutodesk Autocad architectureAutodesk Autocad electricalAutodesk Autocad ltAutodesk Autocad map 3dAutodesk Autocad mechanicalAutodesk Autocad mepAutodesk Autocad plant 3dAutodesk Civil 3d
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.autodesk.com/products/autodesk-access/overviewhttps://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0017