How severe is CVE-2025-4605?

CVE-2025-4605 has a CVSS v3 score of 6.6 (MEDIUM).

CVE-2025-4605

Name: universal_scene_description
Author: autodesk

6.6MEDIUM

A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-s

Publicado: 6/11/2025Actualizado: 8/19/2025

Descripción

A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-service (DoS), or cause data corruption.

Análisis IAImpulsado por IA

Productos Afectados

autodeskmaya

autodeskuniversal_scene_description

0.10

autodeskuniversal_scene_description

0.31.0

Referencias

https://github.com/Autodesk/3dsmax-usd
https://github.com/Autodesk/maya-usd
https://www.autodesk.com/products/autodesk-access/overview
https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0011
Vendor Advisory