← voltar
CVE-2020-13524

CVE-2020-13524

CVSS 6.3 MEDIUMEPSS 0.8%CWE-119
An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, the victim needs to access an attacker-provided malformed file.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Produtos afetados
n/a · Pixar

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://seclists.org/fulldisclosure/2020/Dec/26http://seclists.org/fulldisclosure/2020/Dec/32https://support.apple.com/kb/HT212011https://talosintelligence.com/vulnerability_reports/TALOS-2020-1125