cvedb.io
CVE-2022-25790
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2022-04-11T20:15:20.503 · Last modified 2026-06-17T04:34:17.120

Summary

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.

Affected products

autodesk — advance_steel

Does this affect you?

Add your gear to cvedb and we'll alert you only when autodesk ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.