This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Navisworks Freedom. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-1659.
Category Archives: Advisories
ZDI-25-197: Autodesk Navisworks Freedom DWFX File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Navisworks Freedom. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-1658.
APPLE-SA-04-01-2025-1 watchOS 11.4
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-04-01-2025-1 watchOS 11.4
watchOS 11.4 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122376.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
AirDrop
Available for: Apple Watch Series 6 and later
Impact: An app may be able to read arbitrary file metadata
Description: A…
APPLE-SA-03-31-2025-11 visionOS 2.4
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-11 visionOS 2.4
visionOS 2.4 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122378.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
Accounts
Available for: Apple Vision Pro
Impact: Sensitive keychain data may be accessible from an iOS backup
Description: This issue…
APPLE-SA-03-31-2025-10 tvOS 18.4
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-10 tvOS 18.4
tvOS 18.4 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122377.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
AirDrop
Available for: Apple TV HD and Apple TV 4K (all models)
Impact: An app may be able to read arbitrary file metadata
Description: A…
APPLE-SA-03-31-2025-9 macOS Ventura 13.7.5
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-9 macOS Ventura 13.7.5
macOS Ventura 13.7.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122375.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
AccountPolicy
Available for: macOS Ventura
Impact: A malicious app may be able to gain root privileges
Description:…
APPLE-SA-03-31-2025-8 macOS Sonoma 14.7.5
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-8 macOS Sonoma 14.7.5
macOS Sonoma 14.7.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122374.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
AccountPolicy
Available for: macOS Sonoma
Impact: A malicious app may be able to gain root privileges
Description: This…
APPLE-SA-03-31-2025-7 macOS Sequoia 15.4
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-7 macOS Sequoia 15.4
macOS Sequoia 15.4 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122373.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
Accessibility
Available for: macOS Sequoia
Impact: An app may be able to access sensitive user data
Description: A logging…
APPLE-SA-03-31-2025-6 iOS 15.8.4 and iPadOS 15.8.4
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-6 iOS 15.8.4 and iPadOS 15.8.4
iOS 15.8.4 and iPadOS 15.8.4 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122345.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
Accessibility
Available for: iPhone 6s (all models), iPhone 7 (all models), iPhone SE
(1st…
APPLE-SA-03-31-2025-5 iOS 16.7.11 and iPadOS 16.7.11
Posted by Apple Product Security via Fulldisclosure on Apr 02
APPLE-SA-03-31-2025-5 iOS 16.7.11 and iPadOS 16.7.11
iOS 16.7.11 and iPadOS 16.7.11 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/122346.
Apple maintains a Security Releases page at
https://support.apple.com/100100 which lists recent
software updates with security advisories.
Accessibility
Available for: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation,
iPad Pro…