Security Advisory

CVE-2024-36999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-25 03:33:58
Last updated 2025-08-27 21:15:16
Assigner autodesk
State PUBLISHED

Description

A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.