Crafting a Full Exploit RCE from a Crash in Autodesk Revit RFA File Parsing
• In April of 2025, my colleague Mat Powell was hunting for vulnerabilities in Autodesk Revit 2025. • While fuzzing RFA files, he found the following crash (CVE-2025-5037 / ZDI-CAN