ГлавнаяУязвимости → CVE-2025-8892
7.8высокая

CVE-2025-8892

Описание

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Затрагиваемое ПО
Autodesk Shared componentsAutodesk 3ds maxAutodesk Advance steelAutodesk AutocadAutodesk Autocad architectureAutodesk Autocad electricalAutodesk Autocad map 3dAutodesk Autocad mechanicalAutodesk Autocad mepAutodesk Autocad plant 3dAutodesk Civil 3dAutodesk InfraworksAutodesk InventorAutodesk RevitAutodesk Revit ltAutodesk Vault
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.autodesk.com/products/autodesk-access/overviewhttps://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0019