CVE-2025-1652

Description

A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Reserved 2025-02-24 | Published 2025-03-13 | Updated 2025-03-13 | Assigner autodesk

Problem types

CWE-125 Out-of-Bounds Read

Product status

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

Default status
unaffected

2025 before 2025.1.2
affected

References

www.autodesk.com/trust/security-advisories/adsk-sa-2025-0001

cve.org (CVE-2025-1652)

nvd.nist.gov (CVE-2025-1652)

Download JSON