CVE-2020-16918
published 2020-10-16CVE-2020-16918: A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory. An attacker who successfully exploited the…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.
An attacker who successfully exploited the vulnerability would gain execution on a victim system.
The security update addresses the vulnerability by correcting how the Base3D rendering engine handles memory.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | 3d_viewer | >= 7.0.0 < publication | publication |
| microsoft | microsoft_365_apps_for_enterprise | >= 16.0.1 < https://aka.ms/OfficeSecurityReleases | https://aka.ms/OfficeSecurityReleases |
| msrc | 3d_viewer | — | — |
| msrc | microsoft_365_apps_for_enterprise_for_32-bit_systems | — | — |
| msrc | microsoft_365_apps_for_enterprise_for_64-bit_systems | — | — |