Description
A maliciously crafted RFA file, when converted to FormIt via “Convert RFA to FormIt” in Autodesk Revit, can force a NULL Pointer Dereference vulnerability. Successful exploitation may cause the application to crash, leading to a denial-of-service condition.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- autodesk / revit2027.1 – 2027.1
- autodesk / revit2026.4.1 – 2026.4.1
- autodesk / revit2025.4.5 – 2025.4.5
- autodesk / revit2024.3.5 – 2024.3.5