CVE-2025-1652 is an out-of-bounds (OOB) read vulnerability identified in Autodesk AutoCAD versions 2022 through 2025. The vulnerability arises when AutoCAD parses a specially crafted MODEL file. Due to improper bounds checking during the parsing process, an attacker can trigger an out-of-bounds read condition. This flaw can be exploited to cause the application to crash (denial of service), leak sensitive information from memory, or potentially execute arbitrary code within the context of the AutoCAD process. The vulnerability is classified under CWE-125, which pertains to improper validation of array indices or pointer offsets leading to memory access outside the intended buffer boundaries. While no public exploits have been reported in the wild to date, the vulnerability is recognized by CISA and Autodesk, indicating its seriousness. The lack of an available patch at the time of disclosure suggests that affected organizations must rely on interim mitigations until official updates are released. Given AutoCAD's widespread use in engineering, architecture, and design sectors, exploitation could have significant operational and data confidentiality consequences. The attack vector requires the victim to open or process a malicious MODEL file, which could be delivered via email attachments, shared network drives, or compromised repositories. Successful exploitation could allow attackers to execute code with the privileges of the user running AutoCAD, potentially leading to further compromise of the host system or lateral movement within a network.

For European organizations, the impact of this vulnerability could be substantial, especially in industries heavily reliant on AutoCAD such as construction, manufacturing, and infrastructure development. Confidentiality could be compromised if sensitive design files or intellectual property are exposed through memory leaks. Integrity risks arise if attackers manipulate design files or inject malicious code, potentially leading to flawed engineering outputs or sabotage. Availability is also at risk due to application crashes caused by malformed MODEL files, disrupting workflows and project timelines. Given AutoCAD's integration into critical infrastructure projects and manufacturing pipelines, exploitation could have downstream effects on supply chains and operational continuity. Additionally, since the vulnerability allows code execution within the AutoCAD process context, attackers could escalate privileges or deploy malware, increasing the risk of broader network compromise. The medium severity rating reflects the need for user interaction (opening a malicious file) and the absence of widespread exploitation, but the potential for significant damage in targeted attacks remains high. European organizations with less mature cybersecurity postures or insufficient file handling policies are particularly vulnerable.

1. Implement strict file handling policies: Restrict the acceptance and opening of MODEL files from untrusted or unknown sources. Use email filtering and sandboxing to detect and block suspicious attachments. 2. Employ network segmentation: Isolate systems running AutoCAD from critical network segments to limit lateral movement in case of compromise. 3. Monitor and audit file access: Deploy endpoint detection and response (EDR) tools to monitor AutoCAD process behavior and alert on abnormal crashes or memory access patterns. 4. Use application whitelisting and least privilege principles: Run AutoCAD with the minimum necessary user privileges to reduce the impact of potential code execution. 5. Maintain up-to-date backups: Ensure regular backups of design files and system states to enable recovery from potential ransomware or data corruption incidents. 6. Stay informed and apply patches promptly: Monitor Autodesk advisories closely and apply security updates as soon as they become available. 7. Educate users: Train employees on the risks of opening files from unverified sources and encourage reporting of suspicious files or behavior. 8. Consider deploying virtualized or sandboxed environments for opening untrusted MODEL files to contain potential exploitation attempts.