PT-2021-7841 · Luxion+1 · Keyshot+2

Rgod

Published

2021-05-12

Updated

2021-06-09

CVE-2021-27490

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions KeyShot versions v10.1 and prior

Description The issue is related to an out-of-bounds read in the Datakit Software libraries, specifically in the CatiaV5 3dRead, CatiaV6 3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules. This may allow an attacker to execute arbitrary code. The vulnerability is associated with a buffer read beyond its boundaries in memory, potentially enabling an attacker to run arbitrary code.

Recommendations For KeyShot versions v10.1 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2023-03562

CVE-2021-27490

ZDI-21-566

Affected Products

Catiav5

Catiav6

Keyshot

PT-2021-7841 · Luxion+1 · Keyshot+2

CVE-2021-27490

Weakness Enumeration

Related Identifiers

Affected Products

References · 9