Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-13520

An out of bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 reconstructs paths from binary USD files. A specially crafted malformed file can trigger an out of bounds memory modification which can result in remote code execution. To trigger this vulnerability, victim needs to access an attacker-provided malformed file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
Products affected by CVE-2020-13520
  • Pixar » Openusd » Version: 20.05
    cpe:2.3:a:pixar:openusd:20.05
  • Apple » Macos » Version: N/A
    cpe:2.3:o:apple:macos:-
  • Apple » Macos » Version: 1.0
    cpe:2.3:o:apple:macos:1.0
  • Apple » Macos » Version: 10.15.7
    cpe:2.3:o:apple:macos:10.15.7
  • Apple » Macos » Version: 11.0
    cpe:2.3:o:apple:macos:11.0
  • Apple » Macos » Version: 11.0.1
    cpe:2.3:o:apple:macos:11.0.1
  • Apple » Macos » Version: 7.5.3
    cpe:2.3:o:apple:macos:7.5.3
  • Apple » Macos » Version: 7.6
    cpe:2.3:o:apple:macos:7.6
  • Apple » Macos » Version: 7.6.1
    cpe:2.3:o:apple:macos:7.6.1
  • Apple » Macos » Version: 8.0
    cpe:2.3:o:apple:macos:8.0
  • Apple » Macos » Version: 8.1
    cpe:2.3:o:apple:macos:8.1
  • Apple » Macos » Version: 8.5
    cpe:2.3:o:apple:macos:8.5
  • Apple » Macos » Version: 8.6
    cpe:2.3:o:apple:macos:8.6
  • Apple » Macos » Version: 9
    cpe:2.3:o:apple:macos:9
  • Apple » Macos » Version: 9.0
    cpe:2.3:o:apple:macos:9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved