VYPR
Unrated severityNVD Advisory· Published Jun 25, 2024· Updated Aug 26, 2025

Multiple ZDI Vulnerabilities in Autodesk AutoCAD and certain AutoCAD-based products

CVE-2024-23152

Description

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Affected products

9

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.