CVE-2024-12178

Name of the Vulnerable Software and Affected Versions: Autodesk Navisworks Freedom, Autodesk Navisworks Simulate, and Autodesk Navisworks Manage (affected versions not specified)

Description: The issue is related to a Memory Corruption vulnerability caused by the improper handling of DWFX files in Autodesk Navisworks software. This vulnerability can be exploited by a malicious actor to execute arbitrary code in the context of the current process. The exploitation occurs when a maliciously crafted DWFX file is parsed through Autodesk Navisworks, allowing the attacker to leverage the vulnerability.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.