CVE-2024-7674

Name of the Vulnerable Software and Affected Versions Autodesk Navisworks (affected versions not specified)

Description A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. This issue allows a malicious actor to cause a crash or execute arbitrary code in the context of the current process. The vulnerability is related to the dwfcore.dll library and is associated with a buffer overflow in memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.