CVE-2023-25001

Summary

A maliciously crafted SKP file in Autodesk Navisworks 2023 and 2022 be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.

Affected Software

VendorProductVersion RangeStatus
n/aNavisworks2023, 2022affected

Weaknesses

  • Use-after-free vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References