CVE-2023-25005

Name of the Vulnerable Software and Affected Versions Autodesk InfraWorks versions 2021 through 2023

Description A maliciously crafted DLL file can be forced to read beyond allocated boundaries when parsing the DLL files, potentially leading to a resource injection issue.

Recommendations For Autodesk InfraWorks version 2021, update to a version that includes the necessary security patches. For Autodesk InfraWorks version 2023, apply the recommended security fixes to prevent exploitation. As a temporary workaround, consider restricting access to DLL files until a patch is available.