CVE-2025-4605

🗓️ 11 Jun 2025 13:53:51Reported by autodeskType

Malicious .usdc file in Autodesk Maya causes uncontrolled memory allocation vulnerability and data corruption.

Reporter	Title	Published	Views	Family All 9
Tenable Nessus	Autodesk Maya < 2025.3.1 / MayaUSD < 0.32.0 Arbitrary Memory Allocation (ADSK-SA-2025-0011)	13 Jun 202500:00	–	nessus
Circl	CVE-2025-4605	15 Aug 202514:03	–	circl
CNNVD	Autodesk Maya 安全漏洞	11 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-4605 USD File Parsing Memory Allocation Vulnerability	11 Jun 202513:53	–	cvelist
EUVD	EUVD-2025-18111	3 Oct 202520:07	–	euvd
NVD	CVE-2025-4605	11 Jun 202514:15	–	nvd
Positive Technologies	PT-2025-25215 · Autodesk · Autodesk Maya	11 Jun 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-4605	13 Jun 202514:09	–	redhatcve
Vulnrichment	CVE-2025-4605 USD File Parsing Memory Allocation Vulnerability	11 Jun 202513:53	–	vulnrichment

NVD

Node

autodesk mayaRange2025–2025.3.1

autodesk universal_scene_descriptionMatch0.103ds_max

autodesk universal_scene_descriptionMatch0.31.0maya

[
  {
    "cpes": [
      "cpe:2.3:a:autodesk:usd_for_maya:maya_usd_0.31.0:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "USD for Maya",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "Maya USD 0.32.0",
        "status": "affected",
        "version": "Maya USD 0.31.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:autodesk:usd_for_3ds_max:max_usd_0.10:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "USD for 3ds Max",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "Max USD 0.11",
        "status": "affected",
        "version": "Max USD 0.10",
        "versionType": "custom"
      }
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:autodesk:maya:2025:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Maya",
    "vendor": "Autodesk",
    "versions": [
      {
        "lessThan": "2025.3.1",
        "status": "affected",
        "version": "2025",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/Autodesk/3dsmax-usd
autodesk	www.autodesk.com/trust/security-advisories/adsk-sa-2025-0011
autodesk	www.autodesk.com/products/autodesk-access/overview
github	www.github.com/Autodesk/maya-usd

19 Aug 2025 14:15Current

7High risk

Vulners AI Score7

CVSS 3.16.6

EPSS0.00192

SSVC