Design/Logic Flaw

2023-03-0320:15:00

PRIOn knowledge base

www.prio-n.com

cubism core

live2d editor

out-of-bounds write

moc3 file

logic flaw

0.001 Low

EPSS

Percentile

23.6%

Cubism Core in Live2D Cubism Editor 4.2.03 allows out-of-bounds write via a crafted Section Offset Table or Count Info Table in an MOC3 file.

CPENameOperatorVersion
cubism_editoreq4.2.03

CPE	Name	Operator	Version
	cubism_editor	eq	4.2.03

References

docs.live2d.com/cubism-editor-manual/updates4/

github.com/openl2d/moc3ingbird

news.ycombinator.com/item?id=35013098

undeleted.ronsor.com/live2d-a-security-trainwreck/

0.001 Low

EPSS

Percentile

23.6%

Related for PRION:CVE-2023-27566