Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 parsing of compressed string tokens in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in out of bounds memory access which could lead to information disclosure. This vulnerability could be used to bypass mitigations and aid further exploitation. To trigger this vulnerability, victim needs to access an attacker-provided malformed file.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Pixar OpenUSD 缓冲区错误漏洞
Vulnerability Description
Pixar OpenUSD是美国皮克斯(Pixar)公司的一款可生成3D计算机场景的软件。该软件广泛应用于动漫和游戏产业,用于设计3D场景。 Pixar OpenUSD 20.05版本存在安全漏洞,该漏洞源于一个特别设计的畸形文件可以触发堆溢出,这可能导致超出边界的内存访问,这可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A