What is the severity of CVE-2024-23125?

CVE-2024-23125 has a high severity rating due to the potential for stack-based overflow which can lead to code execution.

How do I fix CVE-2024-23125?

To fix CVE-2024-23125, it is recommended to apply the latest security updates provided by Autodesk for affected products.

What products are affected by CVE-2024-23125?

CVE-2024-23125 affects Autodesk AutoCAD and Autodesk ODXSW_DLL.

What could an attacker achieve by exploiting CVE-2024-23125?

An attacker exploiting CVE-2024-23125 could cause application crashes, read sensitive data, or execute arbitrary code.

How can I identify if my software version is vulnerable to CVE-2024-23125?

You can identify if your software is vulnerable to CVE-2024-23125 by checking if you are using any affected versions of Autodesk products and verifying against the latest security advisories.

Vulnerability/
CVE-2024-23125

high

7.8

CWE

121

EPSS

0.043%

22/2/2024

30/1/2025

CVE-2024-23125: Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software

First published: Thu Feb 22 2024(Updated: 2 months ago)

A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Credit: psirt@autodesk.com

Affected Software	Affected Version	How to fix
Autodesk AutoCAD 2024
Autodesk ODXSW_DLL

Never miss a vulnerability like this again

Reference Links

https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002

Frequently Asked Questions

What is the severity of CVE-2024-23125?
CVE-2024-23125 has a high severity rating due to the potential for stack-based overflow which can lead to code execution.
How do I fix CVE-2024-23125?
To fix CVE-2024-23125, it is recommended to apply the latest security updates provided by Autodesk for affected products.
What products are affected by CVE-2024-23125?
CVE-2024-23125 affects Autodesk AutoCAD and Autodesk ODXSW_DLL.
What could an attacker achieve by exploiting CVE-2024-23125?
An attacker exploiting CVE-2024-23125 could cause application crashes, read sensitive data, or execute arbitrary code.
How can I identify if my software version is vulnerable to CVE-2024-23125?
You can identify if your software is vulnerable to CVE-2024-23125 by checking if you are using any affected versions of Autodesk products and verifying against the latest security advisories.

agent/weakness
agent/references
agent/type
agent/first-publish-date
agent/author
collector/epss-latest
source/FIRST
agent/epss
agent/source
agent/title
agent/event
collector/nvd-api
source/NVD
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/autodesk
canonical/autodesk autocad 2024
canonical/autodesk odxsw_dll

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.