Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-5037

A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.3%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2025-5037
  • Autodesk » Revit » Version: 2024
    cpe:2.3:a:autodesk:revit:2024
  • Autodesk » Revit » Version: 2024.0.2
    cpe:2.3:a:autodesk:revit:2024.0.2
  • Autodesk » Revit » Version: 2024.1
    cpe:2.3:a:autodesk:revit:2024.1
  • Autodesk » Revit » Version: 2024.1.1
    cpe:2.3:a:autodesk:revit:2024.1.1
  • Autodesk » Revit » Version: 2024.2
    cpe:2.3:a:autodesk:revit:2024.2
  • Autodesk » Revit » Version: 2024.2.1
    cpe:2.3:a:autodesk:revit:2024.2.1
  • Autodesk » Revit » Version: 2024.2.2
    cpe:2.3:a:autodesk:revit:2024.2.2
  • Autodesk » Revit » Version: 2024.3
    cpe:2.3:a:autodesk:revit:2024.3
  • Autodesk » Revit » Version: 2024.3.1
    cpe:2.3:a:autodesk:revit:2024.3.1
  • Autodesk » Revit » Version: 2024.3.2
    cpe:2.3:a:autodesk:revit:2024.3.2
  • Autodesk » Revit » Version: 2025
    cpe:2.3:a:autodesk:revit:2025
  • Autodesk » Revit » Version: 2025.1
    cpe:2.3:a:autodesk:revit:2025.1
  • Autodesk » Revit » Version: 2025.2
    cpe:2.3:a:autodesk:revit:2025.2
  • Autodesk » Revit » Version: 2025.3
    cpe:2.3:a:autodesk:revit:2025.3
  • Autodesk » Revit » Version: 2025.4
    cpe:2.3:a:autodesk:revit:2025.4
  • Autodesk » Revit » Version: 2025.4.1
    cpe:2.3:a:autodesk:revit:2025.4.1
  • Autodesk » Revit » Version: 2026
    cpe:2.3:a:autodesk:revit:2026
  • Autodesk » Revit » Version: 2026.0.1
    cpe:2.3:a:autodesk:revit:2026.0.1
  • Autodesk » Revit » Version: 2026.1
    cpe:2.3:a:autodesk:revit:2026.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved