A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 22 Sep 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 22 Sep 2025 19:15:00 +0000

Type Values Removed Values Added
Description A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Title PRT File Parsing Memory Corruption Vulnerability
First Time appeared Autodesk
Autodesk shared Components
Weaknesses CWE-120
CPEs cpe:2.3:a:autodesk:shared_components:2026.4:*:*:*:*:*:*:*
Vendors & Products Autodesk
Autodesk shared Components
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: autodesk

Published:

Updated: 2025-09-22T20:32:23.204Z

Reserved: 2025-08-12T15:50:17.780Z

Link: CVE-2025-8892

cve-icon Vulnrichment

Updated: 2025-09-22T20:32:15.097Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-09-22T19:16:28.063

Modified: 2025-09-22T21:22:16.313

Link: CVE-2025-8892

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.