A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the VRED Design application. Exploitation of this vulnerability may lead to code execution.
CVE ID: CVE-2024-7995
CVSS Base Severity: HIGH
CVSS Base Score: 7.8
Vendor: Autodesk
Product: VRED Design
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.77% (scored less or equal to compared to others)
EPSS Date: 2025-02-27 (when was this score calculated)