20 matches found
CVE-2023-36772
CVE-2023-36772 affects Microsoft 3D Builder (and related 3D tools in MS ecosystem) with a remote code execution vulnerability. The connected PT-Security entry describes a memory buffer overflow when processing WRL/PLY files in 3D Builder, enabling arbitrary code execution after opening a crafted ...
CVE-2023-21780
CVE-2023-21780 affects Microsoft 3D Builder. Root cause is insufficient input validation in 3D Builder that can lead to arbitrary code execution when a user opens a specially crafted file. Exploitation requires user interaction (open file) and has a local attack surface with high impact on confid...
CVE-2023-21788
Technical details for CVE-2023-21788 are not publicly available in the provided documents; no affected versions, root cause, or remediation are specified here. Monitor for updates from official advisories.
CVE-2023-23377
CVE-2023-23377 corresponds to vulnerabilities in Microsoft 3D Builder. The connected sources identify a remote code execution issue affecting the 3D Builder app, described as a buffer-overflow style flaw during WRL file parsing, enabling arbitrary code execution. The evidence points to multiple a...
CVE-2023-21787
Summary (CVE-2023-21787) : Microsoft 3D Builder is affected by a remote code execution vulnerability caused by insufficient input validation when opening specially crafted files. The reported impact is arbitrary code execution on the affected system. Affected product: 3D Builder . The vulnerabili...
CVE-2023-21784
Microsoft 3D Builder is affected by remote code execution due to insufficient input validation when opening a specially crafted file. The vulnerability enables arbitrary code execution on the host after user interaction, with a local attack vector. The linked PT-2023-1047 note states there is no ...
CVE-2023-21786
CVE-2023-21786 is tied to Microsoft 3D Builder. One connected document (PT-2023-1251) details that the issue arises from insufficient input validation in 3D Builder, allowing an attacker to execute arbitrary code when a user opens a specially crafted file. The document notes affected versions are...
CVE-2023-21789
CVE-2023-21789 concerns the Microsoft 3D Builder app, where a Remote Code Execution vulnerability could allow an attacker to execute arbitrary code on a vulnerable system. The vulnerability is associated with the 3D Builder component and is rated with a CVSS v3.1 base score of 7.8 (High), with lo...
CVE-2023-21791
CVE-2023-21791 relates to the Microsoft 3D Builder app and is described in connected sources as a remote code execution vulnerability caused by insufficient input validation in the 3D Builder program. Exploitation is reported via opening a specially crafted file, enabling arbitrary code execution...
CVE-2023-21781
CVE-2023-21781 affects the Microsoft 3D Builder application. The connected PT-2023-1052 entry attributes the issue to insufficient input validation in 3D Builder, which can be exploited by opening a specially crafted malicious file to achieve arbitrary code execution. The description explicitly n...
CVE-2023-21782
The CVE-2023-21782 entry concerns Microsoft 3D Builder, a Windows tool for creating 3D models. Affected component is the 3D Builder executable/file parsing pipeline, where the root cause is insufficient input validation during parsing of 3D file formats (e.g., GLB/PLY/WRL). This can lead to Remot...
CVE-2023-21793
The provided connected docs identify a Microsoft 3D Builder remote code execution vulnerability (CVE-2023-21793). The root cause described in PT-2023-1256 is insufficient input validation in the 3D Builder program, enabling an attacker to execute arbitrary code via a specially crafted file. Impac...
CVE-2023-21790
The CVE-2023-21790 entry concerns Microsoft 3D Builder. Affected component: 3D Builder app. Root cause described in PT-2023-1255 as insufficient input validation in the 3D Builder program, enabling arbitrary code execution by opening a specially crafted file. Impact: arbitrary code execution on a...
CVE-2023-21783
The CVE-2023-21783 issue affects Microsoft’s 3D Builder . According to connected sources, the vulnerability is a Remote Code Execution flaw caused by insufficient input validation in the 3D Builder program, which can be leveraged by opening a specially crafted file to execute arbitrary code. The ...
CVE-2023-21785
Microsoft 3D Builder is affected by a remote code execution vulnerability. The issue stems from insufficient input validation in the 3D Builder program, which can be exploited by opening a specially crafted malicious file, allowing an attacker to execute arbitrary code. Affected software: 3D Buil...
CVE-2023-21792
Summary: CVE-2023-21792 affects Microsoft 3D Builder. Multiple connected sources (e.g., PT-2023-1254) describe an RCE due to insufficient input validation in 3D Builder, exploitable by opening a specially crafted file. The vulnerability is tied to 3D Builder and is described as arbitrary code exe...
CVE-2023-23390
CVE-2023-23390 – Microsoft 3D Builder vulnerability confirmed by multiple sources. The PTsecurity write-up attributes the issue to insufficient input validation in the 3D Builder program, enabling remote code execution when processing a specially crafted file. Related notes from Kaspersky enumera...
CVE-2023-36773
CVE-2023-36773 is a Microsoft 3D Builder remote code execution vulnerability affecting the 3D Builder app (and related 3D components cited in connected sources). The provided documents indicate a high-impact, local-exploitation path requiring user interaction, with no explicit exploitation detail...
CVE-2023-36771
CVE-2023-36771 pertains to the Microsoft 3D Builder remote code execution vulnerability. The connected sources identify the affected product as the 3D Builder app and describe an RCE impact, with CVSSv3.1 metrics indicating a high severity (7.8) and local attack vector with user interaction requi...
CVE-2023-36770
The CVE-2023-36770 entry corresponds to a Microsoft 3D Builder remote code execution vulnerability. Technical details in connected sources indicate the issue stems from a buffer/GLB file handling flaw in 3D Builder that can allow arbitrary code execution when a crafted GLB file is opened. One PTS...