Unrated severityNVD Advisory· Published Feb 22, 2024· Updated Aug 26, 2025
Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software
CVE-2024-23136
Description
A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process.
Affected products
10- cpe:2.3:a:autodesk:autocad_architecture:2025:*:*:*:*:*:*:*Range: 2025
- cpe:2.3:a:autodesk:autocad_electrical:2025:*:*:*:*:*:*:*Range: 2025
- cpe:2.3:a:autodesk:autocad_mechanical:2025:*:*:*:*:*:*:*Range: 2025
- cpe:2.3:a:autodesk:autocad_plant_3d:2025:*:*:*:*:*:*:*Range: 2025
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.