CVE-2024-37008

Name of the Vulnerable Software and Affected Versions Autodesk Revit versions prior to 2025

Description A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. This allows a malicious actor to execute arbitrary code in the context of the current process.

Recommendations For Autodesk Revit versions prior to 2025, patch immediately to resolve the issue. As a temporary workaround, consider restricting the handling of DWG files until a patch is applied. Monitor for exploit development and apply additional security measures as necessary.