1. Home
  2. CVE Database
  3. CVE-2025-7675
HIGH · 7.8

CVE-2025-7675

A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause...

Vulnerability Description

A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
AutodeskShared Components2026.2
Autodesk3Ds Max2026
AutodeskAdvance Steel2026
AutodeskAutocad2026
AutodeskAutocad Architecture2026
AutodeskAutocad Electrical2026
AutodeskAutocad Map 3D2026
AutodeskAutocad Mechanical2026
AutodeskAutocad Mep2026
AutodeskAutocad Plant 3D2026
AutodeskCivil 3D2026
AutodeskInfraworks2026
AutodeskInventor2026
AutodeskRevit2026
AutodeskRevit Lt2026
AutodeskVault2026

Related Weaknesses (CWE)

CWE-787

References

FAQ

What is CVE-2025-7675?

CVE-2025-7675 is a vulnerability with a CVSS score of 7.8 (HIGH). A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause...

How severe is CVE-2025-7675?

CVE-2025-7675 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-7675?

Check the references section above for vendor advisories and patch information. Affected products include: Autodesk Shared Components, Autodesk 3Ds Max, Autodesk Advance Steel, Autodesk Autocad, Autodesk Autocad Architecture.