Autodesk Fbx Review vulnerabilities

CVE-2024-23139 [HIGH] CWE-787 CVE-2024-23139: A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write v A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2022-25794 [HIGH] CWE-125 CVE-2022-25794: An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.2 and prior may lead to code An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.2 and prior may lead to code execution through maliciously crafted ActionScript Byte Code 'ABC' files or information disclosure. ABC files are created by the Flash compiler and contain executable code. This vulnerability in conjunction with other vulnerabilities could lead to code e

CVE-2021-40157 [HIGH] CWE-119 CVE-2021-40157: A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer Deref A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer Dereference vulnerability in FBX’s Review version 1.5.0 and prior causing it to run arbitrary code on the system.

CVE-2021-27044 [HIGH] CWE-125 CVE-2021-27044: A Out-Of-Bounds Read/Write Vulnerability in Autodesk FBX Review version 1.4.0 may lead to remote cod A Out-Of-Bounds Read/Write Vulnerability in Autodesk FBX Review version 1.4.0 may lead to remote code execution through maliciously crafted DLL files or information disclosure.

CVE-2021-27027 [HIGH] CWE-125 CVE-2021-27027: An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to code An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to code execution through maliciously crafted DLL files or information disclosure.

CVE-2021-27030 [HIGH] CWE-22 CVE-2021-27030: A user may be tricked into opening a malicious FBX file which may exploit a Directory Traversal Remo A user may be tricked into opening a malicious FBX file which may exploit a Directory Traversal Remote Code Execution vulnerability in FBX’s Review causing it to run arbitrary code on the system.

CVE-2021-27031 [HIGH] CWE-416 CVE-2021-27031: A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerabi A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in FBX's Review causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system.

CVE-2021-27028 [HIGH] CWE-787 CVE-2021-27028: A Memory Corruption Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to remote A Memory Corruption Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to remote code execution through maliciously crafted DLL files.

CVE-2021-27029 [MEDIUM] CWE-476 CVE-2021-27029: The user may be tricked into opening a malicious FBX file which may exploit a Null Pointer Dereferen The user may be tricked into opening a malicious FBX file which may exploit a Null Pointer Dereference vulnerability in FBX's Review version 1.5.0 and prior causing the application to crash leading to a denial of service.