Every CVE whose affected-product data names Autodesk Civil 3d, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (89)
CVE-2025-8894 — CVSS 7.8 (high): A maliciously crafted PDF file, when parsed through certain Autodesk products, can force a Heap-Based Overflow vulnerability. A malicious…
CVE-2019-7359 — CVSS 7.8 (high): An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018…
CVE-2019-7360 — CVSS 7.8 (high): An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018…
CVE-2019-7361 — CVSS 7.8 (high): An attacker may convince a victim to open a malicious action micro (.actm) file that has serialized data, which may trigger a code…
CVE-2019-7364 — CVSS 7.8 (high): DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD…
CVE-2019-7358 — CVSS 7.8 (high): An exploitable heap overflow vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk…
CVE-2021-27041 — CVSS 7.8 (high): A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. This vulnerability can be…
CVE-2021-27042 — CVSS 7.8 (high): A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists because…
CVE-2021-27043 — CVSS 7.8 (high): An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in…
CVE-2021-40158 — CVSS 7.8 (high): A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated…
CVE-2021-40159 — CVSS 7.8 (high): An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnerabilities…
CVE-2021-40160 — CVSS 7.8 (high): PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This…
CVE-2021-40161 — CVSS 7.8 (high): A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7…
CVE-2022-25788 — CVSS 7.8 (high): A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated buffer while parsing JT files. This…
CVE-2022-25789 — CVSS 7.8 (high): A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free…
CVE-2022-25790 — CVSS 7.8 (high): A maliciously crafted DWF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the…
CVE-2022-25791 — CVSS 7.8 (high): A Memory Corruption vulnerability for DWF and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 may lead…
CVE-2022-25792 — CVSS 7.8 (high): A maliciously crafted DXF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 and Autodesk Navisworks 2022 can be used to write beyond the…
CVE-2022-27529 — CVSS 7.8 (high): A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the allocated…
CVE-2022-27530 — CVSS 7.8 (high): A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through…
CVE-2024-0446 — CVSS 7.8 (high): A maliciously crafted STP, CATPART or MODEL file, when parsed in ASMKERN228A.dll and ASMdatax229A.dll through Autodesk AutoCAD, may force…
CVE-2024-23120 — CVSS 7.8 (high): A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may force an…
CVE-2024-23121 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in libodxdll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A…
CVE-2024-23122 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A…
CVE-2024-23123 — CVSS 7.8 (high): A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds…
CVE-2024-23124 — CVSS 7.8 (high): A maliciously crafted STP file, when parsed in ASMIMPORT228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability…
CVE-2024-23125 — CVSS 7.8 (high): A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overflow. A…
CVE-2024-23126 — CVSS 7.8 (high): A maliciously crafted CATPART file when parsed CC5Dll.dll through Autodesk applications can be used to cause a Stack-based Overflow. A…
CVE-2024-23127 — CVSS 7.8 (high): A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll through Autodesk applications, can be…
CVE-2024-23128 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodesk applications, can lead to a memory…
CVE-2024-23129 — CVSS 7.8 (high): A maliciously crafted MODEL 3DM, STP, or SLDASM file, when in opennurbs.dll parsed through Autodesk applications, can lead to a memory…
CVE-2024-23130 — CVSS 7.8 (high): A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption…
CVE-2024-23131 — CVSS 7.8 (high): A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll or ASMDATAX228A.dll through Autodesk…
CVE-2024-23132 — CVSS 7.8 (high): A maliciously crafted STP file in atf_dwg_consumer.dll when parsed through Autodesk applications can lead to a memory corruption…
CVE-2024-23133 — CVSS 7.8 (high): A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk applications can lead to a memory corruption vulnerability…
CVE-2024-23134 — CVSS 7.8 (high): A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-after-free vulnerability. This…
CVE-2024-23135 — CVSS 7.8 (high): A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can be used in user-after-free…
CVE-2024-23136 — CVSS 7.8 (high): A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be used to dereference an untrusted…
CVE-2024-23137 — CVSS 7.8 (high): A maliciously crafted STP or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to uninitialized…
CVE-2024-23138 — CVSS 7.8 (high): A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can…
CVE-2024-23140 — CVSS 7.8 (high): A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Autodesk applications, can force an…
CVE-2024-23141 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause a double free. This vulnerability…
CVE-2024-23142 — CVSS 7.8 (high): A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_vc15.dll and libodxdll through Autodesk…
CVE-2024-23143 — CVSS 7.8 (high): A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll through Autodesk applications, can force…
CVE-2024-23144 — CVSS 7.8 (high): A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds…
CVE-2024-23145 — CVSS 7.8 (high): A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious…
CVE-2024-23146 — CVSS 7.8 (high): A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through through Autodesk AutoCAD, may force an Out-of-Bounds Write…
CVE-2024-23147 — CVSS 7.8 (high): A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll through Autodesk applications, can lead to…
CVE-2024-23148 — CVSS 7.8 (high): A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption…
CVE-2024-23149 — CVSS 7.8 (high): A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications, can force an Out-of-Bound Read. A malicious…
CVE-2024-23150 — CVSS 7.8 (high): A maliciously crafted PRT file, when parsed in odxug_dll.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A…
CVE-2024-23151 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in ASMkern229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A…
CVE-2024-23152 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious…
CVE-2024-23153 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in libodx.dll through Autodesk applications, can force an Out-of-Bounds Read. A malicious…
CVE-2024-23154 — CVSS 7.8 (high): A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to cause a Heap-based Overflow…
CVE-2024-23155 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk applications, can be used to cause a Heap-based…
CVE-2024-23156 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk applications, can lead to a memory…
CVE-2024-23157 — CVSS 7.8 (high): A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can lead to a memory corruption…
CVE-2024-23158 — CVSS 7.8 (high): A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-free…
CVE-2024-23159 — CVSS 7.8 (high): A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk applications, can be used to uninitialized variables…
CVE-2024-36999 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can force an Out-of-Bounds Write. A malicious…
CVE-2024-37000 — CVSS 7.8 (high): A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead to a memory corruption vulnerability by…
CVE-2024-37001 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A…
CVE-2024-37002 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications, can be used to uninitialized variables. This…
CVE-2024-37003 — CVSS 7.8 (high): A maliciously crafted DWG and SLDPRT file, when parsed in opennurbs.dll and ODXSW_DLL.dll through Autodesk applications, can be used to…
CVE-2024-37004 — CVSS 7.8 (high): A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications, can cause a use-after-free vulnerability…
CVE-2024-37005 — CVSS 7.8 (high): A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can force an Out-of-Bound Read. A malicious…
CVE-2024-37006 — CVSS 7.8 (high): A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can lead to a memory corruption…
CVE-2024-37007 — CVSS 7.8 (high): A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications, can cause a use-after-free…
CVE-2024-7305 — CVSS 7.8 (high): A maliciously crafted DWF file, when parsed in AdDwfPdk.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A…
CVE-2024-8587 — CVSS 7.8 (high): A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based Buffer Overflow…
CVE-2025-1275 — CVSS 7.8 (high): A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability…
CVE-2025-1276 — CVSS 7.8 (high): A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A…
CVE-2025-1427 — CVSS 7.8 (high): A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious…
CVE-2025-1428 — CVSS 7.8 (high): A maliciously crafted CATPART file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor…
CVE-2025-1429 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious actor…
CVE-2025-1430 — CVSS 7.8 (high): A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious actor can…
CVE-2025-1431 — CVSS 7.8 (high): A maliciously crafted SLDPRT file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor…
CVE-2025-1432 — CVSS 7.8 (high): A maliciously crafted 3DM file, when parsed through Autodesk AutoCAD, can force a Use-After-Free vulnerability. A malicious actor can…
CVE-2025-1433 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor…
CVE-2025-1649 — CVSS 7.8 (high): A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious…
CVE-2025-1650 — CVSS 7.8 (high): A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious…
CVE-2025-1651 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based Overflow vulnerability. A malicious actor…
CVE-2025-1652 — CVSS 7.8 (high): A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor…
CVE-2025-5046 — CVSS 7.8 (high): A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious…
CVE-2025-5047 — CVSS 7.8 (high): A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor…
CVE-2025-5048 — CVSS 7.8 (high): A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force a Memory Corruption vulnerability. A malicious…
CVE-2025-8893 — CVSS 7.8 (high): A maliciously crafted PDF file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious…
CVE-2021-27040 — CVSS 3.3 (low): A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be…