CVE-2023-25010

CVSS V2 None CVSS V3 None

Description

A malicious actor may convince a victim to open a malicious USD file that may trigger an uninitialized variable which may result in code execution.

Overview

CVE ID
CVE-2023-25010

Assigner
psirt@autodesk.com

Vulnerability Status
Undergoing Analysis

Published Version
2023-04-17T21:15:07

Last Modified Date
2023-04-18T03:15:28

References

Reference URL	Reference Tags
https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0003

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-25010
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25010

History

Created	Old Value	New Value	Data Type	Notes
2023-04-17 22:00:39				Added to TrackCVE
2023-04-18 04:00:38		2023-04-18T03:15:28	CVE Modified Date	updated
2023-04-18 04:00:38	Received	Awaiting Analysis	Vulnerability Status	updated
2023-04-24 11:01:16	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated