PT-2021-17240 · Autodesk · Autodesk Fbx Review

Rgod

Published

2021-04-19

Updated

2021-09-16

CVE-2021-27031

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Autodesk FBX Review (affected versions not specified)

Description: A user may be tricked into opening a malicious FBX file, which may exploit a use-after-free issue in FBX's Review. This could cause the application to reference a memory location controlled by an unauthorized third party, allowing arbitrary code to run on the system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2021-27031

ZDI-21-1069

ZDI-21-468

Affected Products

Autodesk Fbx Review

PT-2021-17240 · Autodesk · Autodesk Fbx Review

CVE-2021-27031

Weakness Enumeration

Related Identifiers

Affected Products

References · 9