Every CVE whose affected-product data names Autodesk Inventor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2025-5039 — CVSS 7.8 (high): A maliciously crafted binary file, when present while loading files in certain Autodesk applications, could lead to execution of arbitrary…
CVE-2021-40158 — CVSS 7.8 (high): A maliciously crafted JT file in Autodesk Inventor 2022, 2021, 2020, 2019 and AutoCAD 2022 may be forced to read beyond allocated…
CVE-2021-40159 — CVSS 7.8 (high): An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019 in conjunction with other vulnerabilities…
CVE-2021-40162 — CVSS 7.8 (high): A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries…
CVE-2021-40163 — CVSS 7.8 (high): A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing…
CVE-2021-40164 — CVSS 7.8 (high): A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute…
CVE-2021-40165 — CVSS 7.8 (high): A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer…
CVE-2021-40166 — CVSS 7.8 (high): A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed…
CVE-2022-25788 — CVSS 7.8 (high): A maliciously crafted JT file in Autodesk AutoCAD 2022 may be used to write beyond the allocated buffer while parsing JT files. This…
CVE-2023-25003 — CVSS 7.8 (high): A maliciously crafted pskernel.dll file in Autodesk AutoCAD 2023 and Maya 2022 may be used to trigger out-of-bound read write / read…
CVE-2023-25004 — CVSS 7.8 (high): A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these…
CVE-2023-29068 — CVSS 7.8 (high): A maliciously crafted file consumed through pskernel.dll file could lead to memory corruption vulnerabilities. These vulnerabilities in…
CVE-2025-1276 — CVSS 7.8 (high): A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A…
CVE-2005-4710 — CVSS 4.6 (medium): Unspecified vulnerability in multiple Autodesk and AutoCAD products and product families from 2006 and earlier allows remote attackers to…