CVE-2025-1427

Q: What is the severity of CVE-2025-1427?

CVE-2025-1427 has a CVSS score of 7.8 (HIGH). This vulnerability allows attackers to exploit uninitialized variables in Autodesk AutoCAD when processing malicious CATPRODUCT files. Successful exploitation could lead to crashes, data leaks, or arbitrary code execution. All AutoCAD users who open untrusted CATPRODUCT files are affected.

7.8 HIGH

📋 TL;DR

This vulnerability allows attackers to exploit uninitialized variables in Autodesk AutoCAD when processing malicious CATPRODUCT files. Successful exploitation could lead to crashes, data leaks, or arbitrary code execution. All AutoCAD users who open untrusted CATPRODUCT files are affected.

💻 Affected Systems

Products:

Autodesk AutoCAD
Autodesk AutoCAD LT

Versions: 2022 and earlier versions (specific affected versions detailed in vendor advisory)

Operating Systems: Windows, macOS

Default Config Vulnerable: ⚠️ Yes

Notes: All default installations that process CATPRODUCT files are vulnerable. No special configuration required for exploitation.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with current user privileges, potentially leading to full system compromise, data theft, or lateral movement within the network.

🟠

Likely Case

Application crashes and potential memory disclosure when users open malicious CATPRODUCT files from untrusted sources.

🟢

If Mitigated

Limited to denial of service if proper file validation and user awareness controls are implemented.

🌐 Internet-Facing: MEDIUM - Requires user interaction to open malicious files, but could be delivered via email or web downloads.

🏢 Internal Only: MEDIUM - Internal users could be tricked into opening malicious files shared via network drives or internal communications.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires user interaction to open malicious files. No public exploits available as of current knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Latest AutoCAD/AutoCAD LT 2022 updates (specific version in vendor advisory)

Vendor Advisory: https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0001

Restart Required: No

Instructions:

1. Open AutoCAD. 2. Navigate to Help > Check for Updates. 3. Install all available updates. 4. Alternatively, download updates from Autodesk's official support site.

🔧 Temporary Workarounds

Disable CATPRODUCT file association

all

Prevent AutoCAD from automatically opening CATPRODUCT files by changing file associations

Windows: Control Panel > Default Programs > Associate a file type or protocol with a program
macOS: Right-click CATPRODUCT file > Get Info > Open With > Change to different application

Implement file validation

all

Use application whitelisting or file validation tools to block untrusted CATPRODUCT files

🧯 If You Can't Patch

Implement strict user training about opening files from untrusted sources
Deploy application control solutions to restrict AutoCAD from processing CATPRODUCT files from untrusted locations

🔍 How to Verify

Check if Vulnerable:

Check AutoCAD version against affected versions listed in Autodesk advisory ADSK-SA-2025-0001

Check Version:

AutoCAD: Type 'ABOUT' command in AutoCAD command line or check Help > About AutoCAD

Verify Fix Applied:

Verify AutoCAD version is updated to latest release and no longer listed in vendor advisory

📡 Detection & Monitoring

Log Indicators:

AutoCAD crash logs with memory access violations
Application error events in Windows Event Viewer related to AutoCAD

Network Indicators:

Unusual network connections from AutoCAD process after file opening
Downloads of CATPRODUCT files from untrusted sources

SIEM Query:

EventID=1000 OR EventID=1001 AND ProcessName='acad.exe' AND (ExceptionCode=0xc0000005 OR ExceptionCode=0xc0000409)

📊 Metadata

CVE ID: CVE-2025-1427

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-457

EPSS Score: 0.08% exploit probability (24th percentile)

Published: March 13, 2025

Last Updated: August 19, 2025

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Advance Steel by Autodesk

Advance Steel by Autodesk

Advance Steel by Autodesk

Advance Steel by Autodesk

Autocad by Autodesk

Autocad by Autodesk

Autocad by Autodesk

Autocad by Autodesk

Autocad Architecture by Autodesk

Autocad Architecture by Autodesk

Autocad Architecture by Autodesk

Autocad Architecture by Autodesk

Autocad Electrical by Autodesk

Autocad Electrical by Autodesk

Autocad Electrical by Autodesk

Autocad Electrical by Autodesk

Autocad Map 3d by Autodesk

Autocad Map 3d by Autodesk

Autocad Map 3d by Autodesk

Autocad Map 3d by Autodesk

Autocad Mechanical by Autodesk

Autocad Mechanical by Autodesk

Autocad Mechanical by Autodesk

Autocad Mechanical by Autodesk

Autocad Mep by Autodesk

Autocad Mep by Autodesk

Autocad Mep by Autodesk

Autocad Mep by Autodesk

Autocad Plant 3d by Autodesk

Autocad Plant 3d by Autodesk

Autocad Plant 3d by Autodesk

Autocad Plant 3d by Autodesk

Civil 3d by Autodesk

Civil 3d by Autodesk

Civil 3d by Autodesk

Civil 3d by Autodesk

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable CATPRODUCT file association

Implement file validation

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities