Security Advisory

CVE-2020-13493

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-02 17:25:18
Last updated 2024-08-04 12:18:18
Assigner talos
State PUBLISHED

Description

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file.