CVE-2024-12178

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 17, 2024

CWE ID 120

Summary

CVE-2024-12178 is a newly identified vulnerability that affects Autodesk Navisworks. Maliciously crafted DWFX files can cause Memory Corruption in the software during parsing. An attacker can exploit this vulnerability to execute arbitrary code in the context of the current process. This can potentially lead to significant security risks, including unauthorized access to sensitive data or system takeover. Organizations using Autodesk Navisworks are advised to apply patches or updates as soon as they become available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1PraOJ
https://www.cve.org/CVERecord?id=CVE-2024-12178
https://nvd.nist.gov/vuln/detail/CVE-2024-12178

Back to Vulnerability Database

CVE-2024-12178

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations