How severe is CVE-2025-4605?

CVE-2025-4605 has a CVSS v3 score of 6.6 (MEDIUM).

CVE-2025-4605

Name: universal_scene_description
Author: autodesk

6.6MEDIUM

A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-s

发布于: 6/11/2025更新于: 8/19/2025

描述

A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability to cause a denial-of-service (DoS), or cause data corruption.

AI分析AI驱动

受影响产品

autodeskmaya

autodeskuniversal_scene_description

0.10

autodeskuniversal_scene_description

0.31.0

参考资料

https://github.com/Autodesk/3dsmax-usd
https://github.com/Autodesk/maya-usd
https://www.autodesk.com/products/autodesk-access/overview
https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0011
Vendor Advisory