{"id":76033,"date":"2025-09-21T01:15:24","date_gmt":"2025-09-21T01:15:24","guid":{"rendered":""},"modified":"2025-10-01T12:50:36","modified_gmt":"2025-10-01T18:50:36","slug":"cve-2025-5043-heap-based-overflow-vulnerability-in-autodesk-products-can-lead-to-arbitrary-code-execution","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-5043-heap-based-overflow-vulnerability-in-autodesk-products-can-lead-to-arbitrary-code-execution\/","title":{"rendered":"CVE-2025-5043: Heap-Based Overflow Vulnerability in Autodesk Products Can Lead to Arbitrary Code Execution<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

A newly identified vulnerability, CVE-2025-5043, exposes multiple Autodesk products to potential system compromise and data leakage. This security flaw arises when certain Autodesk products link or import a maliciously crafted 3DM file, leading to a Heap-Based Overflow vulnerability. The impacted applications include a wide range of Autodesk<\/a> products, widely used by architects, engineers, and graphic designers, among others. Therefore, the potential reach and impact of this vulnerability<\/a> can be considerable, affecting numerous businesses and individuals who rely on these applications for their daily operations.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-5043
\nSeverity: High (7.8 CVSS score)
\nAttack Vector: Maliciously crafted 3DM file
\nPrivileges Required: None
\nUser Interaction: Required (File link or import)
\nImpact: Potential system<\/a> compromise and data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n