Vulnerabilities > Blender
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-04-24 | CVE-2017-12100 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the 'multires_load_old_dm' functionality of the Blender open-source 3d creation suite v2.78c. | 7.8 |
2018-04-24 | CVE-2017-12099 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the upgrade of the legacy Mesh attribute 'tface' of the Blender open-source 3d creation suite v2.78c. | 7.8 |
2018-04-24 | CVE-2017-12086 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the 'BKE_mesh_calc_normals_tessface' functionality of the Blender open-source 3d creation suite. | 7.8 |
2018-04-24 | CVE-2017-12082 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. | 7.8 |
2018-04-24 | CVE-2017-12081 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. | 7.8 |
2009-11-06 | CVE-2009-3850 | Code Injection vulnerability in Blender Blender 2.34, 2.35a, 2.40, and 2.49b allows remote attackers to execute arbitrary code via a .blend file that contains Python statements in the onLoad action of a ScriptLink SDNA. | 9.3 |
2008-11-01 | CVE-2008-4863 | Unspecified vulnerability in Blender 2.46 Untrusted search path vulnerability in BPY_interface in Blender 2.46 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to an erroneous setting of sys.path by the PySys_SetArgv function. local blender | 6.9 |
2008-04-28 | CVE-2008-1103 | Link Following vulnerability in Blender Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related to "temporary file issues." | 6.9 |
2008-04-22 | CVE-2008-1102 | Buffer Errors vulnerability in Blender 2.45 Stack-based buffer overflow in the imb_loadhdr function in Blender 2.45 allows user-assisted remote attackers to execute arbitrary code via a .blend file that contains a crafted Radiance RGBE image. | 6.8 |
2007-03-03 | CVE-2007-1253 | Code Injection vulnerability in Blender 2.25/2.36/2.37A Eval injection vulnerability in the (a) kmz_ImportWithMesh.py Script for Blender 0.1.9h, as used in (b) Blender before 2.43, allows user-assisted remote attackers to execute arbitrary Python code by importing a crafted (1) KML or (2) KMZ file. | 9.3 |