Use-After-Free Vulnerability in Autodesk FBX SDK 2020
CVE-2022-41303

7.8HIGH

Key Information:

Vendor: Autodesk
Status: Fbx Sdk
Vendor: CVE Published:; 14 October 2022

What is CVE-2022-41303?

A vulnerability exists in Autodesk FBX SDK 2020 that can be exploited when a user opens a malicious FBX file. This use-after-free flaw may allow attackers to manipulate memory references, enabling them to execute arbitrary code on the affected system. It is essential for users to be cautious when handling unknown FBX files to mitigate the risk associated with this vulnerability.

Affected Version(s)

FBX SDK 2020.3.1

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2022
Vulnerability Reserved
Sep 21, 2022