Apple macOS USD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...

Apple macOS USD Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD...

[SECURITY] Fedora 44 Update: usd-26.03-3.fc44

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

[SECURITY] Fedora 43 Update: usd-25.08-20.fc43

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

CVE-2026-20616

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. Processing a maliciously crafted USD file may lead to unexpected app termination...

CVE-2026-20616

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. Processing a maliciously crafted USD file may lead to unexpected app termination...

Apple多款产品 安全漏洞

Apple iOS and other products are owned by the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple macOS is a specialized operating system designed for Mac computers. Apple iPadOS is an operating system for iPad tablets. Several of Apple’s products have...

PT-2026-7754

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 macOS Sonoma versions prior to 14.8.4 macOS Tahoe versions prior to 26.3 visionOS versions prior to 26.3 Description An out-of-bounds write issue exists due to insufficient bounds...

CVE-2026-0659

A maliciously crafted USD file, when loaded or imported into Autodesk Arnold or Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

EUVD-2026-5427

A maliciously crafted USD file, when loaded or imported into Autodesk Arnold or Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

CVE-2022-42268

Omniverse Kit contains a vulnerability in the reference applications Create, Audio2Face, Isaac Sim, View, Code, and Machinima. These applications allow executable Python code to be embedded in Universal Scene Description USD files to customize all aspects of a scene. If a user opens a USD file th...

[SECURITY] Fedora 42 Update: usd-25.02a-5.fc42

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

[SECURITY] Fedora 43 Update: usd-25.08-13.fc43

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

Universal Scene Description Security Vulnerabilities

Universal Scene Description is an open-source 3D scene description and data exchange framework developed by Pixar Animation Studios. There is a security vulnerability in Universal Scene Description, which stems from the reuse of memory areas that have been released during file parsing. This...

[SECURITY] Fedora 42 Update: usd-25.02a-4.fc42

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

[SECURITY] Fedora 43 Update: usd-25.08-12.fc43

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

[SECURITY] Fedora 42 Update: usd-25.02a-3.fc42

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

[SECURITY] Fedora 43 Update: usd-25.08-11.fc43

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

Adobe USD-Fileformat-plugins usdGltf Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe USD-Fileformat-plugins. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists...

Apple macOS USD importMeshes Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...