CVE-2025-5040

A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.autodesk.com/products/autodesk-access/overview
https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0012	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:autodesk:revit::::::::
	cpe:2.3:a:autodesk:revit::::::::
	cpe:2.3:a:autodesk:revit::::::::

History

19 Aug 2025, 14:15

Type	Values Removed	Values Added
References		() https://www.autodesk.com/products/autodesk-access/overview -

22 Jul 2025, 16:50

Type	Values Removed	Values Added
References	~~() https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0012 -~~	() https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0012 - Vendor Advisory
First Time		Autodesk revit Autodesk
CPE		cpe:2.3:a:autodesk:revit::::::::

10 Jul 2025, 13:17

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-10 12:15

Updated : 2025-08-19 14:15

NVD link : CVE-2025-5040

Mitre link : CVE-2025-5040

CVE.ORG link : CVE-2025-5040

JSON object : View

Products Affected

autodesk

revit

CWE

CWE-122

Heap-based Buffer Overflow

{"id": "CVE-2025-5040", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@autodesk.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2025-07-10T12:15:23.893", "references": [{"url": "https://www.autodesk.com/products/autodesk-access/overview", "source": "psirt@autodesk.com"}, {"url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0012", "tags": ["Vendor Advisory"], "source": "psirt@autodesk.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "psirt@autodesk.com", "description": [{"lang": "en", "value": "CWE-122"}]}], "descriptions": [{"lang": "en", "value": "A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process."}, {"lang": "es", "value": "Un archivo RTE manipulado con fines maliciosos, al analizarse mediante Autodesk Revit, puede generar una vulnerabilidad de desbordamiento basado en mont\u00f3n. Un agente malicioso puede aprovechar esta vulnerabilidad para provocar un bloqueo, leer datos confidenciales o ejecutar c\u00f3digo arbitrario en el contexto del proceso actual."}], "lastModified": "2025-08-19T14:15:40.967", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F441B410-A562-4443-B71D-3B90D0CB9822", "versionEndExcluding": "2024.3.3", "versionStartIncluding": "2024"}, {"criteria": "cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1784137-30D2-4B15-B90F-D04D776E7F12", "versionEndExcluding": "2025.4.2", "versionStartIncluding": "2025"}, {"criteria": "cpe:2.3:a:autodesk:revit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C81B830-67E4-452F-B0B1-70986E880968", "versionEndExcluding": "2026.2", "versionStartIncluding": "2026"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@autodesk.com"}