Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentAutodeskVULNRICHMENT:CVE-2024-23139
HistoryMar 17, 2024 - 11:58 p.m.

CVE-2024-23139

2024-03-1723:58:50
CWE-787
autodesk
github.com
autodesk fbx review
out-of-bounds write
code execution
information disclosure
actionscript byte code
flash compiler

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON

An Out-Of-Bounds Write Vulnerability in Autodesk FBX Review version 1.5.3.0 and prior may lead to code execution or information disclosure through maliciously crafted ActionScript Byte Code “ABC” files. ABC files are created by the Flash compiler and contain executable code. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:autodesk:fbx_review:*:*:*:*:*:*:*:*"
    ],
    "vendor": "autodesk",
    "product": "fbx_review",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.5.3.0",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

zdi 1
cvelist 1
cve 1
nvd 1
zdi
zdi
Autodesk FBX Review ABC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2024-03-27 00:00:00
cvelist
cvelist
CVE-2024-23139
2024-03-17 23:58:50
cve
cve
CVE-2024-23139
2024-03-18 00:15:07
nvd
nvd
CVE-2024-23139
2024-03-18 00:15:07

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON
Related for VULNRICHMENT:CVE-2024-23139
zdi1cvelist1cve1nvd1