Every CVE whose affected-product data names Autodesk 3ds Max, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2009-3577 — CVSS 9.3 (critical): Autodesk 3D Studio Max (3DSMax) 6 through 9 and 2008 through 2010 allows remote attackers to execute arbitrary code via a .max file with a…
CVE-2026-0661 — CVSS 8.4 (high): A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can…
CVE-2026-0537 — CVSS 8.4 (high): A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can…
CVE-2026-0538 — CVSS 8.4 (high): A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can…
CVE-2026-0660 — CVSS 8.4 (high): A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious…
CVE-2023-25002 — CVSS 7.8 (high): A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may…
CVE-2025-11795 — CVSS 7.8 (high): A maliciously crafted JPG file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can…
CVE-2025-11797 — CVSS 7.8 (high): A maliciously crafted DWG file, when parsed through Autodesk 3ds Max, can force a Use-After-Free vulnerability. A malicious actor can…
CVE-2025-6633 — CVSS 7.8 (high): A maliciously crafted RBG file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may…
CVE-2025-6634 — CVSS 7.8 (high): A maliciously crafted TGA file, when linked or imported into Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious…
CVE-2026-0536 — CVSS 7.8 (high): A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious…
CVE-2026-7454 — CVSS 7.8 (high): A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can…
CVE-2022-25793 — CVSS 7.8 (high): A Stack-based Buffer Overflow Vulnerability in Autodesk 3ds Max 2022, 2021, and 2020 may lead to code execution through the lack of proper…
CVE-2022-27531 — CVSS 7.8 (high): A maliciously crafted TIF file can be forced to read beyond allocated boundaries in Autodesk 3ds Max 2022, and 2021 when parsing the TIF…
CVE-2022-27532 — CVSS 7.8 (high): A maliciously crafted TIF file in Autodesk 3ds Max 2022 and 2021 can be used to write beyond the allocated buffer while parsing TIF files…
CVE-2022-27871 — CVSS 7.8 (high): Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write…
CVE-2026-0662 — CVSS 7.8 (high): A maliciously crafted project directory, when opening a max file in Autodesk 3ds Max, could lead to execution of arbitrary code in the…
CVE-2026-7451 — CVSS 7.8 (high): A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may…
CVE-2026-7452 — CVSS 7.8 (high): A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can…
CVE-2026-7453 — CVSS 5.5 (medium): A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can cause a Stack Exhaustion vulnerability, leading to a…
CVE-2026-7450 — CVSS 5.5 (medium): A maliciously crafted PAR file, when parsed through Autodesk 3ds Max, can force a NULL Pointer Dereference vulnerability. Successful…
CVE-2025-6632 — CVSS 5.3 (medium): A maliciously crafted PSD file, when linked or imported into Autodesk 3ds Max, can force an Out-of-Bounds Read vulnerability. A malicious…
CVE-2005-4710 — CVSS 4.6 (medium): Unspecified vulnerability in multiple Autodesk and AutoCAD products and product families from 2006 and earlier allows remote attackers to…