See Recorded Future’s Threat Intelligence Solutions in Action

See our Threat Intelligence Solutions in Action

Reduce risk and mitigate cyber attacks, no matter your IT & security stack, maturity journey, or industry

Book a free demo

View Solutions to Reduce Risk

See Recorded Future’s Intelligence in Action

Reduce operational risk through timely, precise, and actionable intelligence.

Book a free demo

Intelligence Cloud Overview

View Services & Support Overview

View Research Overview

CVE-2024-11422

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 17, 2024

CWE ID 787

Summary

CVE-2024-11422 is a vulnerability affecting Autodesk Navisworks. Maliciously crafted DWFX files can exploit this issue, leading to an Out-of-Bounds Write condition. The consequence of this vulnerability can range from application crashes and data corruption to the execution of arbitrary code in the current process. This threat poses a significant risk, as an attacker can utilize this vulnerability to gain unauthorized access or cause damage to vulnerable systems. Users are strongly advised to update their Autodesk Navisworks software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database