Autodesk Navisworks Out-of-Bounds Read Vulnerability in DWFX File Parsing

Vulnerability

An out-of-bounds read vulnerability has been identified in Autodesk Navisworks, triggered by parsing a maliciously crafted DWFX file. This vulnerability can lead to a crash, allow the reading of sensitive data, or enable the execution of arbitrary code within the context of the current process.

Impact

Exploitation of this vulnerability can cause application crashes, unauthorized reading of sensitive information, or execution of arbitrary code in the current process context.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Autodesk Navisworks Out-of-Bounds Read Vulnerability in DWFX File Parsing

Vulnerability

Impact

Affected Products

Autodesk Navisworks

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating