CVE-2024-8598

Autodesk AutoCAD ACTranslators STEP File Parsing Memory Corruption Code Execution Vulnerability

Description

A maliciously crafted STP file when parsed in ACTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.

INFO

Published Date :

2024-10-29T21:12:53.738Z

Last Modified :

2025-08-26T18:36:03.318Z

Source :

autodesk

AFFECTED PRODUCTS

The following products are affected by CVE-2024-8598 vulnerability.

Vendors	Products
Autodesk	Advance Steel Autocad Autocad Advance Steel Autocad Architecture Autocad Civil 3d Autocad Electrical Autocad Map 3d Autocad Mechanical Autocad Mep Autocad Plant 3d Civil 3d
Microsoft	Windows

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8598.

URL	Resource
https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0019

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact