A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Metrics
Affected Vendors & Products
References
History
Wed, 29 Jan 2025 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 29 Jan 2025 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 17 Dec 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 17 Dec 2024 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process. | |
Title | DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software | |
Weaknesses | CWE-787 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: autodesk
Published: 2024-12-17T15:21:43.044Z
Updated: 2025-01-29T16:45:08.442Z
Reserved: 2024-12-04T17:05:00.492Z
Link: CVE-2024-12197

Updated: 2024-12-17T16:00:23.230Z

Status : Awaiting Analysis
Published: 2024-12-17T16:15:24.493
Modified: 2025-01-29T17:15:27.693
Link: CVE-2024-12197

No data.