Use-After-Free in Navisworks 2023 via malicious SKP file
CVE-2023-25001 Published on June 27, 2023
A maliciously crafted SKP file in Autodesk Navisworks 2023 and 2022 be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.
Products Associated with CVE-2023-25001
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-25001 are published in AutoDesk Navisworks:
Exploit Probability
EPSS
0.10%
Percentile
27.21%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.