Lucene search

[email protected]CVE-2020-7081

HistoryApr 17, 2020 - 6:15 p.m.

CVE-2020-7081

2020-04-1718:15:00

CWE-843

[email protected]

web.nvd.nist.gov

124

cve-2020-7081

autodesk

fbx-sdk

type confusion vulnerability

arbitary code

nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

57.4%

JSON

A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to arbitary code read/write on the system running it.

CPENameOperatorVersion
autodesk:fbx_software_development_kitautodesk fbx software development kitle2019.0

CPE	Name	Operator	Version
autodesk:fbx_software_development_kit	autodesk fbx software development kit	le	2019.0

References

www.autodesk.com/trust/security-advisories/adsk-sa-2020-0002

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

57.4%

JSON

Related for CVE-2020-7081

cvelist1 prion1 nessus3 openvas1 threatpost1