Buffer Overflow Vulnerability in Autodesk Maya Software
CVE-2022-42946

7.1HIGH

Key Information:

Vendor: Autodesk
Status: Autodesk Maya
Vendor: CVE Published:; 19 December 2022

What is CVE-2022-42946?

A buffer overflow vulnerability exists in Autodesk Maya 2023 and 2022, which can be triggered by processing a maliciously crafted X_B or PRT file. This flaw allows attackers to exploit the application by forcing it to read beyond allocated buffers. When combined with other vulnerabilities, this could potentially result in code execution within the context of the affected process, posing significant risks to system integrity and data security.

Affected Version(s)

Autodesk Maya 2023, 2022

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2022
Vulnerability Reserved
Oct 14, 2022