VYPR
Unrated severityNVD Advisory· Published Jun 25, 2024· Updated Aug 27, 2025

Multiple ZDI Vulnerabilities in Autodesk AutoCAD and certain AutoCAD-based products

CVE-2024-36999

Description

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.

Affected products

10

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.