How severe is CVE-2025-1649?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2025-1649?

This is classified as CWE-457, which is a common weakness in software security.

CVE-2025-1649 - HIGH Severity | CVSS 7.8

Vulnerability Description

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process.

Related Vulnerabilities

CVE-2021-31435

HIGH

CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.931. User interaction is required to exploit this vulnerability in that the t...

CWE-4572021

CVE-2021-34953

HIGH

CVSS:7.8(High)

Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit P...

CWE-4572021

CVE-2021-46566

HIGH

CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in...

CWE-4572021

CVE-2021-46570

HIGH

CVSS:7.8(High)

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.0.80. User interaction is required to exploit this vulnerability in that th...

CWE-4572021

CVE-2021-46617

HIGH

CVSS:7.8(High)

CWE-4572021

CVE-2021-46631

HIGH

CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target...

CWE-4572021