Vulnerability CVE-2019-7366
Published: 2019-12-03   Modified: 2019-12-04

Description:
Buffer overflow vulnerability in Autodesk FBX Software Development Kit version 2019.5. A user may be tricked into opening a malicious FBX file which may exploit a buffer overflow vulnerability causing it to run arbitrary code on the system.

Type:

CWE-120

 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Autodesk -> Fbx software development kit 

 References:
https://www.autodesk.com/trust/security-advisories/adsk-sa-2019-0003
Copyright 2024, cxsecurity.com

 

Back to Top