QwikSec

Security Database

CVE

CWE

Training

CVE-2021-27031

Published: Apr 19, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in FBX's Review causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system.

Vendor	Product	Versions
n/a	Autodesk FBX Review	affected `1.4.1.0`

References

https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0001

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-468/

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-1069/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.