CVE-2021-22649

2021-02-23 05:15:00 2021-02-26 16:59:00

Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 have multiple NULL pointer dereference issues while processing project files, which may allow an attacker to execute arbitrary code.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Luxion Keyvr * * * * (not an official CPE) Luxion Keyshot viewer * * * * (not an official CPE) Luxion Keyshot * * * * (not an official CPE) Luxion Keyshot network rendering * * * * (not an official CPE)

Luxion - Keyvr Luxion - Keyshot viewer Luxion - Keyshot Luxion - Keyshot network rendering

Advisory	Patch	Confirmed	Link
			https://us-cert.cisa.gov/ics/advisories/icsa-21-035-01