Lucene search

CVE-2021-27030

🗓️ 19 Apr 2021 16:13:15Reported by autodeskType

A user may be tricked into opening a malicious FBX file which may exploit a Directory Traversal Remote Code Execution vulnerability in FBX’s Review causing it to run arbitrary code on the system

Reporter	Title	Published	Views	Family All 6
Zero Day Initiative	Autodesk FBX Review ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability	23 Apr 202100:00	–	zdi
Zero Day Initiative	Autodesk FBX Review ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability	15 Sep 202100:00	–	zdi
Prion	Remote code execution	19 Apr 202116:15	–	prion
Cvelist	CVE-2021-27030	19 Apr 202115:10	–	cvelist
NVD	CVE-2021-27030	19 Apr 202116:15	–	nvd
CNVD	Autodesk FBX Review Remote Code Execution Vulnerability	20 Apr 202100:00	–	cnvd

Nvd

Node

autodesk fbx_reviewRange≤1.5.0

[
  {
    "product": "Autodesk FBX Review",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "1.4.1.0"
      }
    ]
  }
]

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-1070/
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-466/
autodesk	www.autodesk.com/trust/security-advisories/adsk-sa-2021-0001

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Apr 2021 16:15Current

7.9High risk

Vulners AI Score7.9

CVSS29.3

CVSS37.8

EPSS0.49329

CWE-22