CVE-2025-9459 is an out-of-bounds read vulnerability classified under CWE-125, found in Autodesk Shared Components version 2026.0. The vulnerability arises when the software parses a maliciously crafted SLDPRT file, a common file format used by Autodesk for 3D part models. The out-of-bounds read can lead to memory corruption, which attackers can exploit to cause application crashes (denial of service), leak sensitive information from memory, or escalate to arbitrary code execution within the context of the running process. The attack vector requires local access (AV:L) and user interaction (UI:R), but no privileges (PR:N) are needed, making it accessible to users who can open malicious files. The vulnerability affects confidentiality, integrity, and availability, as attackers can read sensitive data, alter program flow, or disrupt service. Although no public exploits are currently known, the vulnerability’s nature and impact make it a significant risk. Autodesk Shared Components are widely used in various Autodesk products, which are prevalent in CAD, engineering, and manufacturing environments. The vulnerability was reserved in August 2025 and published in December 2025, with no patch links currently available, indicating that remediation may still be pending or in progress.

For European organizations, especially those in manufacturing, engineering, and design sectors relying on Autodesk products, this vulnerability poses a substantial risk. Exploitation could lead to unauthorized disclosure of intellectual property or sensitive design data, potentially harming competitive advantage and violating data protection regulations such as GDPR. The ability to execute arbitrary code could allow attackers to establish persistence, move laterally within networks, or deploy ransomware and other malware, impacting operational continuity. The requirement for user interaction means phishing or social engineering could be used to deliver malicious SLDPRT files, increasing the attack surface. Disruption of critical design and manufacturing workflows could result in financial losses and reputational damage. Given the widespread use of Autodesk software in European industrial hubs, the vulnerability could affect a broad range of organizations, from small design firms to large automotive and aerospace manufacturers.

Organizations should implement a multi-layered defense strategy. First, monitor Autodesk’s official channels for patches and apply them promptly once released. Until patches are available, restrict the opening of SLDPRT files from untrusted or external sources, employing strict file validation and sandboxing techniques. Educate users about the risks of opening files from unknown origins and implement robust email and file filtering to block malicious attachments. Employ application whitelisting to limit execution of unauthorized software and monitor Autodesk application behavior for anomalies indicative of exploitation attempts. Network segmentation can limit lateral movement if compromise occurs. Regularly back up critical design data and verify backup integrity to mitigate ransomware risks. Additionally, consider deploying endpoint detection and response (EDR) solutions capable of detecting memory corruption and unusual process behavior related to this vulnerability.