Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles parses certain encoded types. A specially crafted malformed file can trigger an arbitrary out of bounds memory access which could lead to information disclosure. This vulnerability could be used to bypass mitigations and aid further exploitation. To trigger this vulnerability, the victim needs to access an attacker-provided malformed file.
CVSS Information
N/A
Vulnerability Type
跨界内存读
Vulnerability Title
Pixar OpenUSD 缓冲区错误漏洞
Vulnerability Description
Pixar OpenUSD是美国皮克斯(Pixar)公司的一款可生成3D计算机场景的软件。该软件广泛应用于动漫和游戏产业,用于设计3D场景。 Pixar OpenUSD 20.05版本存在缓冲区错误漏洞,该漏洞源于当该软件以二进制USD文件解析压缩段时存在堆溢出漏洞。一个特别制作的畸形文件可能会触发堆溢出,从而导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A