CVE-2021-27031
N/A
N/A
Summary
A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in FBX's Review causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Autodesk FBX Review | 1.4.1.0 | affected |
Weaknesses
- Use-After-Free Remote Code Execution Vulnerability
ADP Enrichment
CVE Program Container
Additional References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0001
- https://www.zerodayinitiative.com/advisories/ZDI-21-468/
- https://www.zerodayinitiative.com/advisories/ZDI-21-1069/
References
- https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0001
- https://www.zerodayinitiative.com/advisories/ZDI-21-468/
- https://www.zerodayinitiative.com/advisories/ZDI-21-1069/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.