CVE-2020-17003
published 2020-10-16CVE-2020-17003: A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory. An attacker who successfully exploited the…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.
An attacker who successfully exploited the vulnerability would gain execution on a victim system.
The security update addresses the vulnerability by correcting how the Base3D rendering engine handles memory.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | 3d_viewer | >= 7.0.0 < publication | publication |
| msrc | 3d_viewer | — | — |