Autodesk Navisworks Simulate vulnerabilities
25 known vulnerabilities affecting autodesk/navisworks_simulate.
Total CVEs
25
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH25
Vulnerabilities
Page 2 of 2
CVE-2024-7671HIGHCVSS 7.8≥ 2025, < 2025.3≥ 2024, < 2024.3+2 more2024-09-30
CVE-2024-7671 [HIGH] CWE-787 CVE-2024-7671: A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, may force a
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
cvelistv5nvd
CVE-2024-7670HIGHCVSS 7.8≥ 2025, < 2025.3≥ 2024, < 2024.3+2 more2024-09-30
CVE-2024-7670 [HIGH] CWE-125 CVE-2024-7670: A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
cvelistv5nvd
CVE-2024-7675HIGHCVSS 7.8v2025v2024+2 more2024-09-30
CVE-2024-7675 [HIGH] CWE-416 CVE-2024-7675: A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Us
A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.
cvelistv5nvd
CVE-2024-7672HIGHCVSS 7.8≥ 2025, < 2025.3≥ 2024, < 2024.3+2 more2024-09-30
CVE-2024-7672 [HIGH] CWE-787 CVE-2024-7672: A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Autodesk Navisworks, may
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
cvelistv5nvd
CVE-2024-7673HIGHCVSS 7.8≥ 2025, < 2025.3≥ 2024, < 2024.3+2 more2024-09-30
CVE-2024-7673 [HIGH] CWE-122 CVE-2024-7673: A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a H
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.
cvelistv5nvd
← Previous2 / 2