CVE-2025-1428 is an Out-of-Bounds Read vulnerability classified under CWE-125 affecting Autodesk AutoCAD versions 2022, 2023, 2024, and 2025. The flaw occurs when AutoCAD parses specially crafted CATPART files, which are typically used to represent 3D part data. An attacker can exploit this vulnerability by convincing a user to open a malicious CATPART file, triggering an out-of-bounds memory read. This can lead to application crashes (denial of service), unauthorized disclosure of sensitive information from memory, or potentially arbitrary code execution within the context of the AutoCAD process. The vulnerability requires user interaction (opening the file) but does not require privileges or authentication, making it accessible to remote attackers who can deliver malicious files via email, shared drives, or other means. The CVSS 3.1 base score is 7.8, indicating high severity, with metrics AV:L (local attack vector), AC:L (low complexity), PR:N (no privileges required), UI:R (user interaction required), and high impact on confidentiality, integrity, and availability. No patches are currently linked, and no known exploits have been reported in the wild, but the vulnerability is CISA-enriched, highlighting its importance. Given AutoCAD's critical role in design and engineering workflows, exploitation could have serious operational and data confidentiality consequences.

The potential impact of CVE-2025-1428 is significant for organizations using Autodesk AutoCAD, especially in sectors such as engineering, architecture, manufacturing, and construction. Successful exploitation can lead to denial of service through application crashes, disrupting critical design and production workflows. More severely, attackers could read sensitive data from memory, potentially exposing intellectual property, design schematics, or proprietary information. The possibility of arbitrary code execution elevates the risk to full system compromise, allowing attackers to execute malicious payloads with the privileges of the AutoCAD process. This could lead to lateral movement within networks, data exfiltration, or deployment of ransomware. The requirement for user interaction limits remote exploitation but does not eliminate risk, as attackers can deliver malicious files via phishing or compromised file shares. The broad version range affected increases the attack surface, and the lack of current patches means organizations remain vulnerable. Overall, the vulnerability threatens confidentiality, integrity, and availability of critical design data and systems worldwide.

Organizations should implement the following specific mitigation strategies: 1) Immediately restrict the opening of CATPART files from untrusted or unknown sources, using application whitelisting or file-blocking policies within AutoCAD or endpoint security solutions. 2) Educate users about the risks of opening unsolicited or suspicious CAD files, emphasizing verification of file provenance. 3) Employ network segmentation to isolate design workstations running AutoCAD from general user networks and internet-facing systems to reduce exposure. 4) Monitor for anomalous AutoCAD process behavior or crashes that may indicate exploitation attempts. 5) Use endpoint detection and response (EDR) tools to detect and block suspicious file parsing or memory access patterns. 6) Coordinate with Autodesk for timely patch deployment once updates addressing CVE-2025-1428 are released. 7) Implement strict access controls and least privilege principles for users running AutoCAD to limit potential damage from exploitation. 8) Consider sandboxing or opening CATPART files in isolated environments when possible to contain potential attacks. These targeted actions go beyond generic advice and focus on reducing attack vectors and exposure until patches are available.