Out-of-Bounds Write Vulnerability in Autodesk Applications
CVE-2025-1276

7.8HIGH

Key Information:

Vendor

Autodesk
Status
Autocad
Autocad Architecture
Autocad Electrical
Autocad Map 3d
Vendor
CVE Published:
15 April 2025

What is CVE-2025-1276?

A vulnerability exists in certain Autodesk applications that process DWG files, where a specially crafted file can result in an Out-of-Bounds Write. This flaw can be exploited by malicious actors to crash the application, corrupt data, or potentially execute arbitrary code, compromising the security of the system. It highlights the importance of robust file validation and security measures in software handling complex file formats.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Advance Steel 2025 < 2025.1.2

Advance Steel 2024 < 2024.1.7

Advance Steel 2023 < 2023.1.7

References

https://www.autodesk.com/products/autodesk-access/overview
patch
https://www.autodesk.com/products/dwg-trueview/overview
patch
https://www.autodesk.com/trust/security-advisories/adsk-s...
vendor-advisory

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.