CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-25002

A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.0%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0002
https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0002

Products affected by CVE-2023-25002

Autodesk » 3ds Max » Version: 2022

cpe:2.3:a:autodesk:3ds_max:2022
Autodesk » 3ds Max » Version: 2023

cpe:2.3:a:autodesk:3ds_max:2023
Autodesk » Navisworks » Version: 2022

cpe:2.3:a:autodesk:navisworks:2022
Autodesk » Navisworks » Version: 2023

cpe:2.3:a:autodesk:navisworks:2023
Autodesk » Revit » Version: 2022

cpe:2.3:a:autodesk:revit:2022
Autodesk » Revit » Version: 2023

cpe:2.3:a:autodesk:revit:2023
Autodesk » Vred » Version: 2023

cpe:2.3:a:autodesk:vred:2023

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-25002

Products

Pricing

Contact Us