CVE-2020-6148
First published: Fri Nov 13 2020(Updated: )
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. An instance exists in USDC file format FIELDSETS section decompression heap overflow.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pixar OpenUSD | =20.05 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-6148?
CVE-2020-6148 is a heap overflow vulnerability in Pixar OpenUSD 20.05.
What is the severity of CVE-2020-6148?
CVE-2020-6148 has a severity value of 7.8, which is considered high.
How does CVE-2020-6148 affect Pixar OpenUSD?
CVE-2020-6148 affects Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files, specifically in the FIELDSETS section decompression.
What is the affected software version of CVE-2020-6148?
CVE-2020-6148 affects Pixar OpenUSD 20.05.
How can I fix CVE-2020-6148?
To fix CVE-2020-6148, it is recommended to update Pixar OpenUSD to a version that addresses the vulnerability.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/references
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/pixar
- canonical/pixar openusd
- version/pixar openusd/20.05