CVE-2020-7079
HIGHAutodesk Dynamo BIM 2.5.0-2.5.1 - Untrusted Search Path Code Execution via Malicious DLL
Title source: llmDescription
An improper signature validation vulnerability in Autodesk Dynamo BIM versions 2.5.1 and 2.5.0 may lead to code execution through maliciously crafted DLL files.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.autodesk.com/trust/security-advisories/adsk-sa-2020-0001
Scores
CVSS v3
7.8
EPSS
0.0013
EPSS Percentile
32.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-426
Status
published
Products (2)
autodesk/dynamo_bim
2.5.0
autodesk/dynamo_bim
2.5.1
Published
Apr 17, 2020
Tracked Since
Feb 18, 2026