ГлавнаяУязвимости → CVE-2025-8894
7.8высокая

CVE-2025-8894

Описание

A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Затрагиваемое ПО
Autodesk Autocad plant 3dAutodesk Advance steelAutodesk Civil 3dAutodesk Autocad ltAutodesk RevitAutodesk AutocadAutodesk Autocad architectureAutodesk Autocad electricalAutodesk Autocad mechanicalAutodesk Autocad mepAutodesk Autocad map 3d
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.autodesk.com/products/autodesk-access/overviewhttps://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0018