Heap-Based Overflow in Autodesk AutoCAD Due to Malicious MODEL File
CVE-2025-1429

7.8HIGH

Key Information:

Vendor

Autodesk
Status
Autocad
Autocad Architecture
Autocad Electrical
Autocad Mechanical
Vendor
CVE Published:
13 March 2025

What is CVE-2025-1429?

A vulnerability in Autodesk AutoCAD allows attackers to exploit a Heap-Based Overflow by using a maliciously crafted MODEL file. When this file is parsed by the application, it can cause a crash, allowing potential access to sensitive data or the execution of arbitrary code within the current process context. Using this vulnerability, an attacker might execute harmful actions that compromise system integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Advance Steel 2025 < 2025.1.2

Advance Steel 2024 < 2024.1.7

Advance Steel 2023 < 2023.1.7

References

https://www.autodesk.com/products/autodesk-access/overview
patch
https://www.autodesk.com/support/technical/article/caas/s...
patch
https://www.autodesk.com/trust/security-advisories/adsk-s...
vendor-advisory

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.