Buffer Overflow Vulnerability in Autodesk 3ds Max Leading to Potential Code Execution
CVE-2022-27532

7.8HIGH

Key Information:

Vendor: Autodesk
Status: Autodesk 3ds Max
Vendor: CVE Published:; 16 June 2022

Summary

A vulnerability has been identified in Autodesk 3ds Max 2021 and 2022, where a specially crafted TIF file can cause a buffer overflow during file parsing. This flaw allows an attacker to potentially execute arbitrary code by exploiting the improper handling of TIF files. When combined with other security weaknesses, this vulnerability poses a significant risk, making it important for users to apply relevant security patches and practice caution when handling TIF files.

Affected Version(s)

Autodesk 3ds Max 2020, 2021

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
Mar 21, 2022