Autodesk Fbx Software Development Kit vulnerabilities

CVE-2023-7298 [MEDIUM] CWE-787 CVE-2023-7298: A maliciously crafted FBX file, when parsed through Autodesk FBX SDK, may force an Out-of-Bounds Wri A maliciously crafted FBX file, when parsed through Autodesk FBX SDK, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVE-2023-27911 [HIGH] CWE-787 CVE-2023-27911: A user may be tricked into opening a malicious FBX file that may exploit a heap buffer overflow vuln A user may be tricked into opening a malicious FBX file that may exploit a heap buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution.

CVE-2023-27909 [HIGH] CWE-787 CVE-2023-27909: An Out-Of-Bounds Write Vulnerability in Autodesk® FBX® SDK version 2020 or prior may lead to code ex An Out-Of-Bounds Write Vulnerability in Autodesk® FBX® SDK version 2020 or prior may lead to code execution through maliciously crafted FBX files or information disclosure.

CVE-2023-27910 [HIGH] CWE-787 CVE-2023-27910: A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vul A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution.

CVE-2022-41304 [HIGH] CWE-787 CVE-2022-41304: An Out-Of-Bounds Write Vulnerability in Autodesk FBX SDK 2020 version and prior may lead to code exe An Out-Of-Bounds Write Vulnerability in Autodesk FBX SDK 2020 version and prior may lead to code execution through maliciously crafted FBX files or information disclosure.

CVE-2022-41303 [HIGH] CWE-416 CVE-2022-41303: A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerabi A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in Autodesk FBX SDK 2020 version causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system.

CVE-2022-41302 [HIGH] CWE-125 CVE-2022-41302: An Out-Of-Bounds Read Vulnerability in Autodesk FBX SDK version 2020. and prior may lead to code exe An Out-Of-Bounds Read Vulnerability in Autodesk FBX SDK version 2020. and prior may lead to code execution or information disclosure through maliciously crafted FBX files. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

CVE-2020-7081 [HIGH] CWE-843 CVE-2020-7081: A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to arbit A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to arbitary code read/write on the system running it.

CVE-2020-7080 [HIGH] CWE-120 CVE-2020-7080: A buffer overflow vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to arbi A buffer overflow vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to arbitrary code execution on a system running it.

CVE-2020-7082 [HIGH] CWE-416 CVE-2020-7082: A use-after-free vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to code A use-after-free vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to code execution on a system running it.

CVE-2020-7085 [HIGH] CWE-787 CVE-2020-7085: A heap overflow vulnerability in the Autodesk FBX-SDK versions 2019.2 and earlier may lead to arbitr A heap overflow vulnerability in the Autodesk FBX-SDK versions 2019.2 and earlier may lead to arbitrary code execution on a system running it.

CVE-2020-7084 [MEDIUM] CWE-476 CVE-2020-7084: A NULL pointer dereference vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lea A NULL pointer dereference vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to denial of service of the application.

CVE-2020-7083 [MEDIUM] CWE-190 CVE-2020-7083: An intager overflow vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to de An intager overflow vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to denial of service of the application.

CVE-2019-7366 [HIGH] CWE-120 CVE-2019-7366: Buffer overflow vulnerability in Autodesk FBX Software Development Kit version 2019.5. A user may be Buffer overflow vulnerability in Autodesk FBX Software Development Kit version 2019.5. A user may be tricked into opening a malicious FBX file which may exploit a buffer overflow vulnerability causing it to run arbitrary code on the system.

CVE-2016-9303 [CRITICAL] CWE-119 CVE-2016-9303: Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbit Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code or cause an infinite loop condition when reading or converting malformed FBX format files.

CVE-2016-9305 [CRITICAL] CWE-19 CVE-2016-9305: Improper handling in the Autodesk FBX-SDK before 2017.1 of type mismatches and previously deleted ob Improper handling in the Autodesk FBX-SDK before 2017.1 of type mismatches and previously deleted objects related to reading and converting malformed FBX format files can allow attackers to gain access to uninitialized pointers.

CVE-2016-9306 [CRITICAL] CWE-119 CVE-2016-9306: Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbit Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code when reading or converting malformed DAE format files.

CVE-2016-9307 [CRITICAL] CWE-119 CVE-2016-9307: Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbit Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code when reading or converting malformed 3DS format files.

CVE-2016-9304 [HIGH] CWE-119 CVE-2016-9304: Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbit Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code when reading or converting malformed DFX format files.