CVE-2022-25796

Name of the Vulnerable Software and Affected Versions Autodesk Navisworks 2022

Description A Double Free issue allows remote malicious actors to execute arbitrary code on a DWF file within affected installations of Autodesk Navisworks. User interaction is required to exploit this issue, where the target must either visit a malicious page or open a malicious file.

Recommendations For Autodesk Navisworks 2022, consider restricting the opening of DWF files from untrusted sources until a patch is available. As a temporary workaround, avoid visiting malicious pages or opening files from unknown sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.