vulnerability
OS X update for Model I/O (CVE-2020-13520)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Nov 13, 2020 | Nov 13, 2020 | Dec 11, 2023 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Nov 13, 2020
Added
Nov 13, 2020
Modified
Dec 11, 2023
Description
An out of bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 reconstructs paths from binary USD files. A specially crafted malformed file can trigger an out of bounds memory modification which can result in remote code execution. To trigger this vulnerability, victim needs to access an attacker-provided malformed file.
Solution(s)
apple-osx-security-update-2020-001-catalinaapple-osx-security-update-2020-005-mojaveapple-osx-upgrade-10_15_7

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.