CVE-2025-6631
Severity CVSS v4.0:
Pending analysis
Type:
CWE-787
Out-of-bounds Write
Publication date:
29/07/2025
Last modified:
04/08/2025
Description
A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:autodesk:shared_components:2026.2:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:3ds_max:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:advance_steel:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_architecture:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_electrical:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_map_3d:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_mechanical:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_mep:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:autocad_plant_3d:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:civil_3d:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:infraworks:2026:-:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:inventor:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:revit:2026:*:*:*:*:*:*:* | ||
cpe:2.3:a:autodesk:revit_lt:2026:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page