Autodesk Products Can Crash or Execute Malicious Code from Corrupted CAD Files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Autodesk Products Can Crash or Execute Malicious Code from Corrupted CAD Files

CVE-2026-0874

Summary

Autodesk products that open CAD files are at risk of crashing or being compromised if they encounter a specially crafted file. This could result in data loss or unauthorized actions. Update your Autodesk software to the latest version to mitigate this risk.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
autodesk	shared_components	<= 2026.6	–

Original title

Original description

A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

nvd CVSS3.1 7.8

Vulnerability type

CWE-787 Out-of-bounds Write

https://www.autodesk.com/products/autodesk-access/overview Product
https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0004 Vendor Advisory

Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026