Use-After-Free Vulnerability in Autodesk AutoCAD Software
CVE-2025-1432

7.8HIGH

Key Information:

Vendor

Autodesk
Status
Autocad
Autocad Architecture
Autocad Electrical
Autocad Mechanical
Vendor
CVE Published:
13 March 2025

What is CVE-2025-1432?

A maliciously crafted 3DM file parsed through Autodesk AutoCAD can trigger a Use-After-Free condition. This vulnerability could allow an attacker to destabilize the application, leading to potential crashes, unauthorized access to sensitive information, or the execution of arbitrary code within the process, posing a significant risk to users.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Advance Steel 2025 < 2025.1.2

Advance Steel 2024 < 2024.1.7

Advance Steel 2023 < 2023.1.7

References

https://www.autodesk.com/products/autodesk-access/overview
patch
https://www.autodesk.com/support/technical/article/caas/s...
patch
https://www.autodesk.com/trust/security-advisories/adsk-s...
vendor-advisory

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.