Autodesk Revit
Moderate fix2 remedies
cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*
Moderate fix2 remedies
- 2026
- 2025
Autodesk Products Heap-Based Overflow Vulnerability via Malicious PDF Parsing
Vulnerability
Patched
A heap-based overflow vulnerability has been identified in certain Autodesk products, including Autodesk Revit, AutoCAD and its specialized toolsets, Advance Steel, and Civil 3D. This vulnerability arises when a maliciously crafted PDF file is parsed by the affected software, potentially leading to a crash, unauthorized reading of sensitive data, or execution of arbitrary code within the current process context.
Impact
Exploitation of this vulnerability can cause application crashes, unauthorized access to sensitive data, or allow for the execution of arbitrary code in the context of the user process.
Remediation
Users can update to the latest versions that mitigate this vulnerability through Autodesk Access or the Accounts Portal. Specific update versions vary by product.
Added: Sep 16, 2025, 3:32 PM
Updated: Sep 16, 2025, 3:32 PM
Vulnerability Rating
Custom Algorithm
spread
6.6impact
10.0exploitability
4.4remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.