CVE-2023-25006

Summary

A malicious actor may convince a user to open a malicious USD file that may trigger a use-after-free vulnerability which could result in code execution.

Affected Software

VendorProductVersion RangeStatus
n/aAutodesk 3ds Max USD Plugin0.3affected

Weaknesses

  • Use-After-Free

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References