AutoDesk Autocad Architecture
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in AutoDesk Autocad Architecture.
By the Year
In 2025 there have been 25 vulnerabilities in AutoDesk Autocad Architecture with an average score of 7.8 out of ten. Last year, in 2024 Autocad Architecture had 72 security vulnerabilities published. Right now, Autocad Architecture is on track to have less security vulnerabilities in 2025 than it did last year. Interestingly, the average vulnerability score and the number of vulnerabilities for 2025 and last year was the same.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 25 | 7.80 |
| 2024 | 72 | 7.80 |
| 2023 | 14 | 8.37 |
| 2022 | 37 | 7.79 |
| 2021 | 6 | 7.05 |
| 2020 | 0 | 0.00 |
| 2019 | 5 | 7.80 |
It may take a day or so for new Autocad Architecture vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent AutoDesk Autocad Architecture Security Vulnerabilities
Autodesk PDF Reader Heap Overflow via Malformed PDF
CVE-2025-8894
7.8 - High
- September 16, 2025
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Heap-based Buffer Overflow
Out-of-Bounds Write in Autodesk PDF Parser via Malicious PDF
CVE-2025-8893
7.8 - High
- September 16, 2025
A maliciously crafted PDF file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD DGN Import Memory Corruption (CVE-2025-5048)
CVE-2025-5048
7.8 - High
- August 15, 2025
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Classic Buffer Overflow
Uninitialized Variable in AutoCAD via Malicious DGN File – Crash or RCE
CVE-2025-5047
7.8 - High
- August 15, 2025
A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Use of Uninitialized Variable
AutoCAD OOBR via Malicious DGN File
CVE-2025-5046
7.8 - High
- August 15, 2025
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
Autodesk 3DM OOB Write RCE via crafted file
CVE-2025-7675
7.8 - High
- July 29, 2025
A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
Heap Overflow via Malicious 3DM in Autodesk Products (CVE-2025-5043)
CVE-2025-5043
7.8 - High
- July 29, 2025
A maliciously crafted 3DM file, when linked or imported into certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Heap-based Buffer Overflow
Autodesk X_T File Memory Corruption RCE
CVE-2025-5038
7.8 - High
- July 29, 2025
A maliciously crafted X_T file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Classic Buffer Overflow
CVE-2025-1656: Heap Overflow in Autodesk App via Malicious PDF
CVE-2025-1656
7.8 - High
- April 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Heap-based Buffer Overflow
Autodesk PDF Heap Overflow CVE-2025-1273
CVE-2025-1273
7.8 - High
- April 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Heap-based Buffer Overflow
Autodesk PDF Parser Memory Corruption Enables Arbitrary Code Exec
CVE-2025-1277
7.8 - High
- April 15, 2025
A maliciously crafted PDF file, when parsed through Autodesk applications, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Classic Buffer Overflow
Revit OOB Write via Malicious RCS File
CVE-2025-1274
7.8 - High
- April 15, 2025
A maliciously crafted RCS file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
Autodesk DWG OOB Write via Malicious DWG
CVE-2025-1276
7.8 - High
- April 15, 2025
A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
Autodesk Image Import (JPG) Heap Overflow via Malicious File
CVE-2025-1275
7.8 - High
- April 15, 2025
A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD Uninitialized Variable via Malicious CATPRODUCT File
CVE-2025-1427
7.8 - High
- March 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Use of Uninitialized Resource
Autodesk AutoCAD CATPART OOB Read
CVE-2025-1428
7.8 - High
- March 13, 2025
A maliciously crafted CATPART file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
AutoCAD Heap Overflow via Malformed MODEL File
CVE-2025-1429
7.8 - High
- March 13, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD SLDPRT Parser Memory Corruption via Malicious File
CVE-2025-1430
7.8 - High
- March 13, 2025
A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD OOB Read via SLDPRT file causing crash or code exec
CVE-2025-1431
7.8 - High
- March 13, 2025
A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
UAF Vulnerability in Autodesk AutoCAD 3DM Parser
CVE-2025-1432
7.8 - High
- March 13, 2025
A maliciously crafted 3DM file, when parsed through Autodesk AutoCAD, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Dangling pointer
AutoCAD OOB Read via Malicious MODEL File
CVE-2025-1433
7.8 - High
- March 13, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
Uninitialized Variable in AutoCAD via CATPRODUCT File
CVE-2025-1649
7.8 - High
- March 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Use of Uninitialized Resource
Autodesk AutoCAD CATPRODUCT Uninitialized Variable Crash/Exec
CVE-2025-1650
7.8 - High
- March 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Use of Uninitialized Resource
AutoCAD MODEL File Heap Overflow
CVE-2025-1651
7.8 - High
- March 13, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD OOB Read Vulnerability in MODEL File Parsing
CVE-2025-1652
7.8 - High
- March 13, 2025
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
Autocad ODXSW_DLL OOB Read via Malicious SLDPRT
CVE-2024-8589
7.8 - High
- October 29, 2024
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
Autocad OOBW via Malformed DWG File
CVE-2024-7991
7.8 - High
- October 29, 2024
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD DWG Parser Stack-Based Buffer Overflow (CVE-2024-7992)
CVE-2024-7992
7.8 - High
- October 29, 2024
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD OOB Read via odxsw_dll.dll in SLDPRT file
CVE-2024-8588
7.8 - High
- October 29, 2024
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
AutoCAD UAF via 3DM Parsing in atf_api.dll
CVE-2024-8590
7.8 - High
- October 29, 2024
A maliciously crafted 3DM file when parsed in atf_api.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Dangling pointer
Heap-Overflow in AcTranslators.exe for Autodesk AutoCAD
CVE-2024-8591
7.8 - High
- October 29, 2024
A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Heap-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Memory Corruption in Autodesk AcTranslators via CATPART File
CVE-2024-8592
7.8 - High
- October 29, 2024
A maliciously crafted CATPART file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD OOB Write in ASMKERN230A.dll via CATPART file
CVE-2024-8593
7.8 - High
- October 29, 2024
A maliciously crafted CATPART file, when parsed in ASMKERN230A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
Autodesk AutoCAD libodxdll.dll Heap Overflow via crafted MODEL file
CVE-2024-8594
7.8 - High
- October 29, 2024
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Use-After-Free via crafted MODEL file in AutoCAD libodxdll.dll
CVE-2024-8595
7.8 - High
- October 29, 2024
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Dangling pointer
Autodesk AutoCAD libodxdll.dll OOB Write via crafted MODEL file
CVE-2024-8596
7.8 - High
- October 29, 2024
A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD ASMDATAX230A.dll Memory Corruption via Malicious STP
CVE-2024-8597
7.8 - High
- October 29, 2024
A maliciously crafted STP file when parsed in ASMDATAX230A.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD ACTranslators.exe STP Parse Buffer Overflow
CVE-2024-8598
7.8 - High
- October 29, 2024
A maliciously crafted STP file when parsed in ACTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Memory Corruption in ACTranslators.exe (AutoCAD) via Malicious STP
CVE-2024-8599
7.8 - High
- October 29, 2024
A maliciously crafted STP file when parsed in ACTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Memory Corruption via SLDPRT Parsing in Autodesk AutoCAD (odxsw_dll.dll)
CVE-2024-8600
7.8 - High
- October 29, 2024
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Acdb25.dll NULL Deref in AutoCAD: Crash & Code Exec via Malicious DXF
CVE-2024-8896
7.8 - High
- October 29, 2024
A maliciously crafted DXF file when parsed in acdb25.dll through Autodesk AutoCAD can force to access a variable prior to initialization. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Use of Uninitialized Resource
Memory Corruption via Malformed DWG in ACAD.exe (AutoCAD)
CVE-2024-9489
7.8 - High
- October 29, 2024
A maliciously crafted DWG file when parsed in ACAD.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
AutoCAD UAF via 3DM File in atf_api.dll
CVE-2024-9826
7.8 - High
- October 29, 2024
A maliciously crafted 3DM file when parsed in atf_api.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Dangling pointer
AUTOCAD C-APP CATPART OOB Read CVE-2024-9827
CVE-2024-9827
7.8 - High
- October 29, 2024
A maliciously crafted CATPART file when parsed in CC5Dll.dll through Autodesk AutoCAD can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.
Out-of-bounds Read
OOB Write in acdb25.dll via Malicious DWG AutoCAD Crash / RCE
CVE-2024-9996
7.8 - High
- October 29, 2024
A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Memory Corruption
Memory Corruption via malicious DWG file in acdb25.dll (AutoCAD)
CVE-2024-9997
7.8 - High
- October 29, 2024
A maliciously crafted DWG file when parsed in acdb25.dll through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
Autocad odxsw_dll.dll Heap Buffer Overflow via SLDPRT
CVE-2024-8587
7.8 - High
- October 29, 2024
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.
Memory Corruption
OOB Write in Autodesk AutoCAD AdDwfPdk.dll via Malicious DWF
CVE-2024-7305
- August 20, 2024
A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Heap BOF in Autodesk atf_asm_interface.dll via Malicious MODEL File
CVE-2024-23155
- June 25, 2024
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk applications, can be used to cause a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.
Memory Corruption
Inventor ODXSW_DLL Unexpected GLB Mem Corruption via Malicious SolidWorks File
CVE-2024-23157
- June 25, 2024
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption vulnerability by write access violation. This vulnerability, along with other vulnerabilities, can lead to code execution in the current process.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for AutoDesk Autocad Architecture or by AutoDesk? Click the Watch button to subscribe.
