27 matches found
CVE-2026-9264
A cross-site scripting XSS vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to...
EUVD-2026-31386
A cross-site scripting XSS vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to...
CVE-2026-9264 Cross-Site Scripting in SketchUp Dynamic Components
A cross-site scripting XSS vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to...
CVE-2026-9264
A cross-site scripting XSS vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to...
CVE-2026-9264 Cross-Site Scripting in SketchUp Dynamic Components
A cross-site scripting XSS vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to...
Autodesk Revit 缓冲区错误漏洞
Autodesk Revit is a suite of building information modeling software from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Revit that stems from a potential heap-based overflow if a maliciously crafted SKP file is linked or imported into Autodesk Revit. An attacker...
The vulnerability of SketchUp Viewer, a 3D design and architectural drafting software, arises from the possibility of an operation exceeding the buffer in memory. This allows attackers to execute arbitrary code.
The vulnerability of SketchUp Viewer, a 3D design and architectural drafting software, lies in the escape from buffer boundaries during the processing of SKP files. Exploiting this vulnerability allows an attacker to execute arbitrary code...
CVE-2024-7508
Trimble SketchUp Viewer SKP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that th...
PT-2024-39788 · Trimble · Trimble Sketchup Viewer
Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this, where the...
PT-2024-39786 · Trimble · Trimble Sketchup Viewer
Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this, where the...
PT-2024-39780 · Trimble · Trimble Sketchup Viewer
Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. It requires user interaction, such as visiting a malicious page or opening a maliciou...
PT-2024-38399 · Trimble · Trimble Sketchup Pro
Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Pro affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this, where the...
PT-2024-38396 · Trimble · Trimble Sketchup Viewer
Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. It requires user interaction, such as visiting a malicious page or opening a maliciou...
Maxon Cinema 4D 安全漏洞
Maxon Cinema 4D is a 3D drawing software from Maxon, a German company. A security vulnerability exists in Maxon Cinema 4D that originates from a post-release reuse vulnerability in the analysis of SKP files. An attacker can exploit the vulnerability to execute remote code...
Trimble SketchUp Viewer 安全漏洞
Trimble SketchUp Viewer is a suite of 3D modeling programs for architects, urban planners, producers, game developers, and related professionals from Trimble USA. A security vulnerability exists in Trimble SketchUp Viewer that originates from a specific flaw in the parsing of SKP files, which...
Trimble SketchUp Viewer 安全漏洞
Trimble SketchUp Viewer is a suite of 3D modeling programs for architects, urban planners, producers, game developers, and related professionals from Trimble USA. A security vulnerability exists in Trimble SketchUp Viewer that originates from a specific flaw in the parsing of SKP files, which...
Trimble SketchUp Viewer 安全漏洞
Trimble SketchUp Viewer is a suite of 3D modeling programs for architects, urban planners, producers, game developers, and related professionals from Trimble USA. A security vulnerability exists in Trimble SketchUp Viewer that originates from a specific flaw in the parsing of SKP files, which...
PT-2023-5506 · Maxon · Maxon Cinema 4D
Name of the Vulnerable Software and Affected Versions: Maxon Cinema 4D affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. It requires user interaction, where the target must visit a malicious page...
PT-2023-14274 · Bentley · Bentley View
Name of the Vulnerable Software and Affected Versions: Bentley View affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Bentley View. It requires user interaction, where the target must visit a malicious page or op...
The vulnerability of Adobe Dimension’s 3D design software lies in its software, which, due to the use of memory after it is freed during SKP file analysis, allows a hacker to execute arbitrary code.
The vulnerability of Adobe Dimension’s 3D design software relates to the use of memory after it is freed during the analysis of SKP files. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...