CVE-2026-0875 (GCVE-0-2026-0875)

Vulnerability from cvelistv5 – Published: 2026-02-18 19:39 – Updated: 2026-05-08 18:27
VLAI
Title
MODEL File Parsing Out-of-Bounds Write
Summary
A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
SSVC
Exploitation: none Automatable: no Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
Assigner
Impacted products
Vendor Product Version
Autodesk Shared Components Affected: 1.9.0.7 , < 1.10.0.4 (custom)
    cpe:2.3:a:autodesk:shared_components:1.9.0.7:*:*:*:*:*:*:*
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-0875",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-02-19T04:55:51.947581Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-02-26T14:44:15.726Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:autodesk:shared_components:1.9.0.7:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Shared Components",
          "vendor": "Autodesk",
          "versions": [
            {
              "lessThan": "1.10.0.4",
              "status": "affected",
              "version": "1.9.0.7",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process."
            }
          ],
          "value": "A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-100",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-100 Overflow Buffers"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "CWE-787 Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-08T18:27:50.946Z",
        "orgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
        "shortName": "autodesk"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0004"
        },
        {
          "tags": [
            "patch"
          ],
          "url": "https://www.autodesk.com/products/autodesk-access/overview"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "MODEL File Parsing Out-of-Bounds Write",
      "x_generator": {
        "engine": "Vulnogram 0.5.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7e40ea87-bc65-4944-9723-dd79dd760601",
    "assignerShortName": "autodesk",
    "cveId": "CVE-2026-0875",
    "datePublished": "2026-02-18T19:39:27.111Z",
    "dateReserved": "2026-01-13T12:37:27.702Z",
    "dateUpdated": "2026-05-08T18:27:50.946Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-0875",
      "date": "2026-07-12",
      "epss": "0.00215",
      "percentile": "0.11927"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-0875\",\"sourceIdentifier\":\"psirt@autodesk.com\",\"published\":\"2026-02-18T20:18:32.370\",\"lastModified\":\"2026-06-17T10:11:32.593\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.\"},{\"lang\":\"es\",\"value\":\"Un archivo MODEL creado maliciosamente, cuando es analizado por ciertos productos de Autodesk, puede forzar una vulnerabilidad de escritura fuera de l\u00edmites. Un actor malicioso puede aprovechar esta vulnerabilidad para causar un fallo, causar corrupci\u00f3n de datos o ejecutar c\u00f3digo arbitrario en el contexto del proceso actual.\"}],\"affected\":[{\"source\":\"psirt@autodesk.com\",\"affectedData\":[{\"vendor\":\"Autodesk\",\"product\":\"Shared Components\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:2.3:a:autodesk:shared_components:1.9.0.7:*:*:*:*:*:*:*\"],\"versions\":[{\"version\":\"1.9.0.7\",\"lessThan\":\"1.10.0.4\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@autodesk.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-02-19T04:55:51.947581Z\",\"id\":\"CVE-2026-0875\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"psirt@autodesk.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:autodesk:shared_components:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2026.6\",\"matchCriteriaId\":\"A8D187E9-7605-4325-9B7D-0C227CD2F26F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:3ds_max:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B938D507-D95A-4EAD-86AB-9B52A3682414\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:advance_steel:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68738B5A-B918-4CA3-BD13-4040B3219AFC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8890EECB-7AB5-41A3-8E77-314183BC3AB3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_architecture:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE935915-6926-474F-B5A4-7E77EF7426DD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_electrical:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEC23105-1362-4BFE-9C93-F0AAA5BAF2B0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_map_3d:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DB79016-0BB6-4E8A-8AE3-5AB39A252DED\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_mechanical:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A159D88-990D-41D7-B6B0-D97B38241860\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_mep:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"046ADE16-4275-4BEF-9A71-480E709383F7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:autocad_plant_3d:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB9FCDC-6717-44EB-AA55-983A771E2460\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:civil_3d:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3383C40E-DD43-4146-9B58-C44585E40985\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:infraworks:2026:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B01CD79-B993-47BB-B775-C10422FB956B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:inventor:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7393B89-15A9-4709-9FF3-DA1C88770594\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:revit:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A56B67-B754-4525-995A-F70CAA6B5AAB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:revit_lt:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF3C0C68-F0D7-4737-8D37-D99F128DAB47\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:autodesk:vault:2026:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08F81FC1-1B7C-40AF-88DB-B62F24CFA21C\"}]}]}],\"references\":[{\"url\":\"https://www.autodesk.com/products/autodesk-access/overview\",\"source\":\"psirt@autodesk.com\",\"tags\":[\"Product\"]},{\"url\":\"https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0004\",\"source\":\"psirt@autodesk.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "redhat_vex": {
      "current_release_date": "2026-03-27T08:13:12+00:00",
      "cve": "CVE-2026-0875",
      "id": "CVE-2026-0875",
      "initial_release_date": "2026-01-01T00:00:00+00:00",
      "product_status:known_not_affected": "1",
      "source": "Red Hat CSAF VEX",
      "status": "final",
      "title": "MODEL File Parsing Out-of-Bounds Write",
      "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-0875.json",
      "version": "3"
    },
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-0875\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-19T04:55:51.947581Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-18T20:10:22.678Z\"}}], \"cna\": {\"title\": \"MODEL File Parsing Out-of-Bounds Write\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"impacts\": [{\"capecId\": \"CAPEC-100\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-100 Overflow Buffers\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:autodesk:shared_components:1.9.0.7:*:*:*:*:*:*:*\"], \"vendor\": \"Autodesk\", \"product\": \"Shared Components\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.9.0.7\", \"lessThan\": \"1.10.0.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0004\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.autodesk.com/products/autodesk-access/overview\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.5.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787 Out-of-bounds Write\"}]}], \"providerMetadata\": {\"orgId\": \"7e40ea87-bc65-4944-9723-dd79dd760601\", \"shortName\": \"autodesk\", \"dateUpdated\": \"2026-05-08T18:27:50.946Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-0875\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-08T18:27:50.946Z\", \"dateReserved\": \"2026-01-13T12:37:27.702Z\", \"assignerOrgId\": \"7e40ea87-bc65-4944-9723-dd79dd760601\", \"datePublished\": \"2026-02-18T19:39:27.111Z\", \"assignerShortName\": \"autodesk\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…