GCVE - cpe:2.3:a:autodesk:revit:2022:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:autodesk:revit:2022:*:*:*:*:*:*:*

part: a version: 2022 update: *

Vendor	Autodesk (`63e0b459-a294-5304-99c8-fcb7d9c8113e`)
Product	Revit (`16e922ad-c794-52c1-9341-8ec8318d5489`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-7994`	vulnerable	2026-06-03 14:58:07.809112	Stack-Based Buffer Overflow Vulnerability in Autodesk Revit HIGH (7.8) A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. Published: 2024-10-16T21:47:51.258Z Updated: 2025-01-28T20:10:30.617Z Open on db.gcve.eu Reference links https://autodesk.com/trust/security-advisories/adsk-sa-2024-0017	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-37008`	vulnerable	2026-06-03 14:56:05.415069	Stack-based Overflow Vulnerability in Revit Software HIGH (7.8) A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process. Published: 2024-08-21T10:02:21.128Z Updated: 2025-08-26T18:07:00.526Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-25002`	vulnerable	2026-06-03 14:49:32.032726	Details available A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution. Published: 2023-06-27T00:00:00.000Z Updated: 2024-12-05T14:39:41.206Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0002	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-27871`	vulnerable	2026-06-03 14:46:53.957266	Details available Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This vulnerability may be exploited to execute arbitrary code. Published: 2022-06-21T14:23:33.000Z Updated: 2024-08-03T05:41:10.620Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-40166`	vulnerable	2026-06-03 14:45:23.251577	Details available A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-04T02:27:31.562Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-40165`	vulnerable	2026-06-03 14:45:23.250186	Details available A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-04T02:27:31.537Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-40164`	vulnerable	2026-06-03 14:45:23.248724	Details available A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-04T02:27:31.502Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-40163`	vulnerable	2026-06-03 14:45:23.247217	Details available A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-04T02:27:31.853Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-40162`	vulnerable	2026-06-03 14:45:23.243210	Details available A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-04T02:27:31.539Z Open on db.gcve.eu Reference links https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0011	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.