CVE-2024-8591

Autodesk AutoCAD 3DM File Parsing Heap-based Buffer Overflow Code Execution Vulnerability

Description

A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Heap-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.

INFO

Published Date :

2024-10-29T21:08:22.860Z

Last Modified :

2025-08-26T18:32:20.168Z

Source :

autodesk

AFFECTED PRODUCTS

The following products are affected by CVE-2024-8591 vulnerability.

Vendors	Products
Autodesk	Advance Steel Autocad Autocad Advance Steel Autocad Architecture Autocad Civil 3d Autocad Electrical Autocad Map 3d Autocad Mechanical Autocad Mep Autocad Plant 3d Civil 3d
Microsoft	Windows

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8591.

URL	Resource
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0019

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact