Use-After-Free Vulnerability in Autodesk 3ds Max
CVE-2025-11797

7.8HIGH

Key Information:

Vendor: Autodesk
Status: 3ds Max
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-11797?

A vulnerability exists in Autodesk 3ds Max that is triggered by a specially crafted DWG file. When this file is processed by the application, it can lead to a Use-After-Free scenario. An attacker can exploit this vulnerability to crash the software, potentially gain access to sensitive information, or even execute unauthorized code within the application’s process context.

Affected Version(s)

3ds Max 2026 < 2026.3

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Oct 15, 2025

JSON