3 matches found
CVE-2022-42946
CVE-2022-42946 affects Autodesk Maya (2022/2023) via parsing of X_B and PRT files. The vulnerability can cause reads (and in some advisories writes) beyond allocated buffers, enabling code execution in the process context. ZDI reports remote code execution with user interaction (visiting a malici...
CVE-2022-42947
CVE-2022-42947 is an out-of-bounds write vulnerability in Autodesk Maya (versions 2022 and 2023) triggered by parsing a malicious X_B file. The issue allows arbitrary code execution and is exploitable with user interaction (the attacker must entice the target to open or process a crafted X_B file...
CVE-2025-4605
CVE-2025-4605 relates to Autodesk Maya parsing of .usdc via MayaUSD, where an adversary‑crafted file can trigger an uncontrolled memory allocation, leading to DoS or data corruption. Connected sources specify affected software: Autodesk Maya (prior to 2025.3.1) and MayaUSD (prior to 0.32.0). The ...