Autodesk Shared Components vulnerabilities

CVE-2026-0875 [HIGH] CWE-787 CVE-2026-0875: A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2026-0874 [HIGH] CWE-787 CVE-2026-0874: A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out- A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-9453 [HIGH] CWE-125 CVE-2025-9453: A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-B A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10887 [HIGH] CWE-120 CVE-2025-10887: A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force a Memory A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9454 [HIGH] CWE-125 CVE-2025-9454: A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-B A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10882 [HIGH] CWE-787 CVE-2025-10882: AA maliciously crafted X_T file, when parsed through certain Autodesk products, can force an Out-of- AA maliciously crafted X_T file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-9459 [HIGH] CWE-125 CVE-2025-9459: A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-o A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10881 [HIGH] CWE-122 CVE-2025-10881: A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force a He A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10889 [HIGH] CWE-120 CVE-2025-10889: A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force a Memor A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9455 [HIGH] CWE-125 CVE-2025-9455: A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an O A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10900 [HIGH] CWE-787 CVE-2025-10900: AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-o AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-9460 [HIGH] CWE-125 CVE-2025-9460: A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-o A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10883 [HIGH] CWE-125 CVE-2025-10883: A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an O A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10898 [HIGH] CWE-787 CVE-2025-10898: AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-o AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-10884 [HIGH] CWE-787 CVE-2025-10884: AA maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out AA maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-9457 [HIGH] CWE-122 CVE-2025-9457: A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory co A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-9452 [HIGH] CWE-787 CVE-2025-9452: A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memory A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

CVE-2025-10888 [HIGH] CWE-787 CVE-2025-10888: AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-o AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2025-14593 [HIGH] CWE-125 CVE-2025-14593: A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out- A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVE-2025-10899 [HIGH] CWE-787 CVE-2025-10899: AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-o AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.