Security Advisory

CVE-2024-7670

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-30 20:25:32

Last updated 2025-08-26 18:09:47

Assigner autodesk

State PUBLISHED

Description

A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

← Browse all CVEs View on cve.org ↗