CVE-2023-27566

CVE-2023-27566

EPSS 0.6%

Cubism Core in Live2D Cubism Editor 4.2.03 allows out-of-bounds write via a crafted Section Offset Table or Count Info Table in an MOC3 file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://docs.live2d.com/cubism-editor-manual/updates4/https://github.com/openl2d/moc3ingbird https://news.ycombinator.com/item?id=35013098 https://undeleted.ronsor.com/live2d-a-security-trainwreck/