CVE ID: CVE-2021-27027 CVSS Score: 7.8 Affected Vendor: Autodesk Affected Product: FBX Review Vulnerability Details: - Allows remote attackers to execute arbitrary code on affected installations of Autodesk FBX Review. - Requires user interaction to exploit the vulnerability (e.g., visiting a malicious page or opening a malicious file). - Flaw exists in the parsing of FBX files due to lack of proper validation of user-supplied data, resulting in out-of-bounds write. Additional Details: Autodesk has issued an update to correct this vulnerability. More details can be found at the provided link. Disclosure Timeline: - 2021-01-21: Vulnerability reported to vendor - 2021-04-23: Coordinated public release of advisory Credit: rgod