CVE-2022-42946
First published: Mon Dec 19 2022(Updated: )
Parsing a maliciously crafted X_B and PRT file can force Autodesk Maya 2023 and 2022 to read beyond allocated buffer. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.
Credit: psirt@autodesk.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Autodesk Maya | =2023 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-42946?
CVE-2022-42946 is a vulnerability in Autodesk Maya 2023 and 2022 that allows a crafted X_B and PRT file to force the software to read beyond allocated buffer, potentially leading to code execution.
How does CVE-2022-42946 impact Autodesk Maya 2023 and 2022?
CVE-2022-42946 can allow an attacker to exploit a crafted X_B and PRT file, potentially enabling code execution within the current process of Autodesk Maya 2023 and 2022.
What is the severity of CVE-2022-42946?
The severity of CVE-2022-42946 is rated as high, with a severity score of 7.1.
How can I fix CVE-2022-42946?
To mitigate this vulnerability, it is recommended to update to the latest version of Autodesk Maya 2023 or 2022 provided by Autodesk, as they have released a security advisory addressing this issue.
Where can I find more information about CVE-2022-42946?
More information about CVE-2022-42946 can be found in the Autodesk Security Advisory ADSSA-2022-0020 at the following URL: https://www.autodesk.com/trust/security-advisories/adsk-sa-2022-0020
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/tags
- agent/description
- agent/author
- agent/event
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/autodesk
- canonical/autodesk maya
- version/autodesk maya/2023