A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-service (DoS), or cause data corruption.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Autodesk |
|
Configuration 1 [-]
|
No data.
References
History
Wed, 30 Jul 2025 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Autodesk universal Scene Description
|
|
| Weaknesses | CWE-770 | |
| CPEs | cpe:2.3:a:autodesk:maya:*:*:*:*:*:*:*:* cpe:2.3:a:autodesk:universal_scene_description:0.10:*:*:*:*:3ds_max:*:* cpe:2.3:a:autodesk:universal_scene_description:0.31.0:*:*:*:*:maya:*:* |
|
| Vendors & Products |
Autodesk universal Scene Description
|
Sun, 13 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Wed, 11 Jun 2025 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 11 Jun 2025 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-service (DoS), or cause data corruption. | |
| Title | USD File Parsing Memory Allocation Vulnerability | |
| Weaknesses | CWE-789 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: autodesk
Published: 2025-06-11T13:53:51.204Z
Updated: 2025-06-11T14:02:53.217Z
Reserved: 2025-05-12T18:36:16.531Z
Link: CVE-2025-4605
Vulnrichment
Updated: 2025-06-11T14:02:43.663Z
NVD
Status : Analyzed
Published: 2025-06-11T14:15:36.847
Modified: 2025-07-30T17:32:19.770
Link: CVE-2025-4605
Redhat
No data.