What is the severity of CVE-2021-27027?

CVE-2021-27027 is classified as a high severity vulnerability due to the potential for remote code execution.

How do I fix CVE-2021-27027?

To fix CVE-2021-27027, update Autodesk FBX Review to version 1.5.1 or later.

What types of attacks can exploit CVE-2021-27027?

CVE-2021-27027 can be exploited through maliciously crafted DLL files that lead to out-of-bounds reads.

What are the potential consequences of CVE-2021-27027?

Exploiting CVE-2021-27027 may lead to information disclosure or unauthorized code execution on the affected system.

Which versions of Autodesk FBX Review are affected by CVE-2021-27027?

Versions of Autodesk FBX Review up to and including 1.5.0 are affected by CVE-2021-27027.

Vulnerability/
CVE-2021-27027

high

7.8

CWE

125

19/4/2021

3/8/2024

CVE-2021-27027: Autodesk FBX Review FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

First published: Mon Apr 19 2021(Updated: )

An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to code execution through maliciously crafted DLL files or information disclosure.

Credit: psirt@autodesk.com

Affected Software	Affected Version	How to fix
Autodesk FBX Review	<=1.5.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-27027?
CVE-2021-27027 is classified as a high severity vulnerability due to the potential for remote code execution.
How do I fix CVE-2021-27027?
To fix CVE-2021-27027, update Autodesk FBX Review to version 1.5.1 or later.
What types of attacks can exploit CVE-2021-27027?
CVE-2021-27027 can be exploited through maliciously crafted DLL files that lead to out-of-bounds reads.
What are the potential consequences of CVE-2021-27027?
Exploiting CVE-2021-27027 may lead to information disclosure or unauthorized code execution on the affected system.
Which versions of Autodesk FBX Review are affected by CVE-2021-27027?
Versions of Autodesk FBX Review up to and including 1.5.0 are affected by CVE-2021-27027.

collector/nvd-index
agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/title
agent/severity
agent/weakness
collector/zdi-advisory
source/ZDI
alias/ZDI-21-471
alias/ZDI-CAN-12200
alias/CVE-2021-27027
agent/software-canonical-lookup
agent/softwarecombine
alias/ZDI-21-470
alias/ZDI-CAN-12199
agent/first-publish-date
alias/ZDI-21-469
alias/ZDI-CAN-12201
agent/description
alias/ZDI-21-473
alias/ZDI-CAN-12615
alias/ZDI-21-472
alias/ZDI-CAN-12613
agent/event
agent/trending
agent/tags
agent/source
vendor/autodesk
canonical/autodesk fbx review
version/autodesk fbx review/1.5.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.