Out-of-Bounds Read Vulnerability in Autodesk 3ds Max
CVE-2025-6632

5.3MEDIUM

Key Information:

Vendor: Autodesk
Status: 3ds Max
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-6632?

A vulnerability exists in Autodesk 3ds Max that can be exploited through a specially crafted PSD file. This allows malicious actors to trigger an Out-of-Bounds Read, potentially causing the software to crash, exposing sensitive data, or executing arbitrary code with the privileges of the current user. Users are advised to be cautious when importing or linking PSD files and to apply any available security updates.

Affected Version(s)

3ds Max 2026 < 2026.2

References

https://www.autodesk.com/trust/security-advisories/adsk-s...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Jun 25, 2025