CVE-2021-27030

Sažetak

A user may be tricked into opening a malicious FBX file which may exploit a Directory Traversal Remote Code Execution vulnerability in FBX’s Review causing it to run arbitrary code on the system.

Reference

https://www.autodesk.com/trust/security-advisories/adsk-sa-2021-0001
https://www.zerodayinitiative.com/advisories/ZDI-21-466/
https://www.zerodayinitiative.com/advisories/ZDI-21-1070/

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-09-2021 - 13:20

Objavljeno

19-04-2021 - 16:15