VYPR
Unrated severityNVD Advisory· Published Dec 9, 2024· Updated Aug 28, 2025

Untrusted Search Path vulnerability in Autodesk Revit

CVE-2024-11454

Description

A maliciously crafted DLL file, when placed in the same directory as an RVT file could be loaded by Autodesk Revit, and execute arbitrary code in the context of the current process due to an untrusted search patch being utilized.

Affected products

2
  • Autodesk/Revitv52 versions
    cpe:2.3:a:autodesk:revit:2025:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:autodesk:revit:2025:*:*:*:*:*:*:*range: 2025
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.