Remote Code Execution Vulnerability in Google SketchUp
CVE-2012-4894

Currently unrated

Key Information:

Vendor: Google
Status: Sketchup
Vendor: CVE Published:; 5 October 2012

Summary

A vulnerability exists in Google SketchUp, where manipulated SKP files can be exploited by attackers to execute arbitrary code or induce a denial of service through memory corruption. This issue affects versions prior to 8.0.14346, making it crucial for users to ensure they are on secure versions to mitigate potential risks.

References

http://osvdb.org/85570

vdb-entryx_refsource_OSVDB

http://technet.microsoft.com/security/msvr/msvr12-015

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/78676

vdb-entryx_refsource_XF

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 5, 2012
Vulnerability Reserved
Sep 12, 2012