CVE-2020-7085

CWE-787Out-of-bounds Write3 documents3 sources
Severity
7.8HIGH
EPSS
0.5%
top 34.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Autodesk FBX Software Development KIT
Timeline
PublishedApr 17
Latest updateMay 24

Description

A heap overflow vulnerability in the Autodesk FBX-SDK versions 2019.2 and earlier may lead to arbitrary code execution on a system running it.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5autodesk_fbx-sdk2019.2 and earlier

🔴Vulnerability Details

2
GHSA
GHSA-pwvj-86cg-mpr2: A heap overflow vulnerability in the Autodesk FBX-SDK versions 20192022-05-24
CVEList
CVE-2020-7085: A heap overflow vulnerability in the Autodesk FBX-SDK versions 20192020-04-17
CVE-2020-7085 (HIGH CVSS 7.8) | A heap overflow vulnerability in th | cvebase.io