The vulnerability of Cobalt Ashlar-Vellum’s parametric automated design and 3D modeling software lies in the inability to properly manage memory boundaries during data writing. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the issue of writing beyond buffer boundaries in memory during the processing of XE format files. Exploiting this vulnerability allows an attacker to execute arbitrary code...