Privilege Escalation due to Untrusted Search Path Vulnerability

July 24, 2025 invoker category_cve

CVE Details

Basic Information

Title Privilege Escalation due to Untrusted Search Path Vulnerability
Type cve
Published 2025-07-24T17:11:14.714Z
Modified 2025-07-24T17:11:14.714Z

Product Information

Vendor Autodesk
Product RealDWG
Version 2026

CVSS Information

Base Score 7.8 (HIGH)
Attack Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Analysis

AI Description A vulnerability in Autodesk RealDWG allows execution of arbitrary code via a malicious binary file due to an untrusted search path, potentially leading to privilege escalation.
AI Severity High
AI Vendor Autodesk
AI Product RealDWG
AI Version 2026

Affected Products

  • Autodesk RealDWG 2026

Additional Information

CWE List CWE-426
Source autodesk

Description

A maliciously crafted binary file, when present while loading files in certain Autodesk applications, could lead to execution of arbitrary code in the context of the current process due to an untrusted search path being utilized.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.