The vulnerabilities of the 3D model rendering software programs Luxion KeyShot, Luxion KeyShot Viewer, Luxion KeyShot Network Rendering, and Luxion KeyVR allow attackers to compromise the confidentiality, integrity, and accessibility of protected information, due to incorrect path restrictions for accessing the restricted catalog.

The vulnerability of the software tools for rendering 3D models, such as Luxion KeyShot, Luxion KeyShot Viewer, Luxion KeyShot Network Rendering, and Luxion KeyVR, exists due to an incorrect limitation on the path to the restricted-access catalog. Exploiting this vulnerability can allow attackers...

CVE-2021-22647

CVE-2021-22647 affects Luxion KeyShot family: KeyShot, KeyShot Viewer, KeyShot Network Rendering, and KeyVR versions prior to 10.1. The vulnerability is described as multiple out-of-bounds write issues encountered while processing project files, which may allow an attacker to execute arbitrary co...