Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-5040

A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.3%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2025-5040
  • Autodesk » Revit » Version: 2024
    cpe:2.3:a:autodesk:revit:2024
  • Autodesk » Revit » Version: 2024.0.2
    cpe:2.3:a:autodesk:revit:2024.0.2
  • Autodesk » Revit » Version: 2024.1
    cpe:2.3:a:autodesk:revit:2024.1
  • Autodesk » Revit » Version: 2024.1.1
    cpe:2.3:a:autodesk:revit:2024.1.1
  • Autodesk » Revit » Version: 2024.2
    cpe:2.3:a:autodesk:revit:2024.2
  • Autodesk » Revit » Version: 2024.2.1
    cpe:2.3:a:autodesk:revit:2024.2.1
  • Autodesk » Revit » Version: 2024.2.2
    cpe:2.3:a:autodesk:revit:2024.2.2
  • Autodesk » Revit » Version: 2024.3
    cpe:2.3:a:autodesk:revit:2024.3
  • Autodesk » Revit » Version: 2024.3.1
    cpe:2.3:a:autodesk:revit:2024.3.1
  • Autodesk » Revit » Version: 2024.3.2
    cpe:2.3:a:autodesk:revit:2024.3.2
  • Autodesk » Revit » Version: 2025
    cpe:2.3:a:autodesk:revit:2025
  • Autodesk » Revit » Version: 2025.1
    cpe:2.3:a:autodesk:revit:2025.1
  • Autodesk » Revit » Version: 2025.2
    cpe:2.3:a:autodesk:revit:2025.2
  • Autodesk » Revit » Version: 2025.3
    cpe:2.3:a:autodesk:revit:2025.3
  • Autodesk » Revit » Version: 2025.4
    cpe:2.3:a:autodesk:revit:2025.4
  • Autodesk » Revit » Version: 2025.4.1
    cpe:2.3:a:autodesk:revit:2025.4.1
  • Autodesk » Revit » Version: 2026
    cpe:2.3:a:autodesk:revit:2026
  • Autodesk » Revit » Version: 2026.0.1
    cpe:2.3:a:autodesk:revit:2026.0.1
  • Autodesk » Revit » Version: 2026.1
    cpe:2.3:a:autodesk:revit:2026.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved