Friday, November 13, 2020
CVE-2020-6149
nist.gov
In: nist.gov
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file in an instance in USDC file format PATHS section. CVE-2020-6149