CVE-2026-0875
Received
Received - Intake
Out-of-Bounds Write in Autodesk MODEL Parsing Enables Code Execution
Publication date: 2026-02-18
Last updated on: 2026-02-20
Assigner: Autodesk
Description
Description
A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| autodesk | shared_components | to 2026.6 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs when a maliciously crafted MODEL file is parsed by certain Autodesk products. The flaw is an Out-of-Bounds Write, which means the software writes data outside the intended memory boundaries.
An attacker can exploit this vulnerability to cause the affected program to crash, corrupt data, or execute arbitrary code within the context of the current process.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to several impacts including:
- Crashing of the affected Autodesk application, leading to denial of service.
- Corruption of data handled by the application, potentially causing loss or alteration of important information.
- Execution of arbitrary code within the application's process, which could allow an attacker to take control of the system or perform unauthorized actions.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70