Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2022-25790

A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the allocated boundaries when parsing the DWF files. Exploitation of this vulnerability may lead to code execution.

  • Published: Apr 11, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-25790
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
autodesk / autocad 2022 2022.1.2
autodesk / autocad_architecture 2022 2022.1.2
autodesk / autocad_electrical 2022 2022.1.2
autodesk / autocad_map_3d 2022 2022.1.2
autodesk / autocad_mechanical 2022 2022.1.2
autodesk / autocad_mep 2022 2022.1.2
autodesk / autocad_plant_3d 2022 2022.1.2
autodesk / autocad_lt 2022 2022.1.2
autodesk / civil_3d 2022 2022.1.2
autodesk / advance_steel 2022 2022.1.2
autodesk / navisworks 2022 2022.2
autodesk / autocad 2019 2019.1.4
autodesk / autocad 2020 2020.1.5
autodesk / autocad 2021 2021.1.2
autodesk / autocad_architecture 2019 2019.1.4
autodesk / autocad_architecture 2020 2020.1.5
autodesk / autocad_architecture 2021 2021.1.2
autodesk / autocad_electrical 2019 2019.1.4
autodesk / autocad_electrical 2020 2020.1.5
autodesk / autocad_electrical 2021 2021.1.2
autodesk / autocad_map_3d 2021 2021.1.2
autodesk / autocad_map_3d 2020 2020.1.5
autodesk / autocad_map_3d 2019 2019.1.4
autodesk / autocad_mechanical 2019 2019.1.4
autodesk / autocad_mechanical 2020 2020.1.5
autodesk / autocad_mechanical 2021 2021.1.2
autodesk / autocad_mep 2021 2021.1.2
autodesk / autocad_mep 2020 2020.1.5
autodesk / autocad_mep 2019 2019.1.4
autodesk / autocad_plant_3d 2019 2019.1.4
autodesk / autocad_plant_3d 2020 2020.1.5
autodesk / autocad_plant_3d 2021 2021.1.2
autodesk / autocad_lt 2021 2021.1.2
autodesk / autocad_lt 2020 2020.1.5
autodesk / autocad_lt 2019 2019.1.4
autodesk / civil_3d 2019 2019.1.4
autodesk / civil_3d 2020 2020.1.5
autodesk / civil_3d 2021 2021.1.2
autodesk / advance_steel 2019 2019.1.4
autodesk / advance_steel 2020 2020.1.5
autodesk / advance_steel 2021 2021.1.2
autodesk / autocad 2022 2022.2.2