Vulnerability Details CVE-2025-5046
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.9%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2025-5046
-
cpe:2.3:a:autodesk:advance_steel:2026
-
cpe:2.3:a:autodesk:autocad:2026
-
cpe:2.3:a:autodesk:autocad_architecture:2026
-
cpe:2.3:a:autodesk:autocad_electrical:2026
-
cpe:2.3:a:autodesk:autocad_lt:2026
-
cpe:2.3:a:autodesk:autocad_map_3d:2026
-
cpe:2.3:a:autodesk:autocad_mechanical:2026
-
cpe:2.3:a:autodesk:autocad_mep:2026
-
cpe:2.3:a:autodesk:autocad_plant_3d:2026
-
cpe:2.3:a:autodesk:civil_3d:2026