Vulnerability Details CVE-2023-7298
A maliciously crafted FBX file, when parsed through Autodesk FBX SDK, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.9%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2023-7298
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2013.3
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2014.2.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2015
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2016.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2016.1.2
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2017.0
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2017.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2018.0
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2018.1.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2019.0
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2019.2
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2019.5
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.0
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.0.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.1.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.2
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.2.1
-
cpe:2.3:a:autodesk:fbx_software_development_kit:2020.3.4