CVE-2021-44046

Severity CVSS v4.0:
Pending analysis
Type:
CWE-787 Out-of-bounds Write
Publication date:
05/12/2021
Last modified:
07/12/2021

Description

An out-of-bounds write vulnerability exists when reading U3D files in Open Design Alliance PRC SDK before 2022.11. An unchecked return value of a function (verifying input data from a U3D file) leads to an out-of-bounds write. An attacker can leverage this vulnerability to execute code in the context of the current process.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:opendesign:prc_sdk:*:*:*:*:*:*:*:* 2022.11 (excluding)


References to Advisories, Solutions, and Tools