Vulnerabilities > Luxion > Keyshot
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-06 | CVE-2024-30374 | Out-of-bounds Write vulnerability in Luxion Keyshot and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-30375 | Use After Free vulnerability in Luxion Keyshot and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Use-After-Free Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5506 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5507 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5508 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5509 | Uncontrolled Search Path Element vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot BIP File Parsing Uncontrolled Search Path Element Remote Code Execution Vulnerability. | 7.8 |
| 2021-05-27 | CVE-2021-27490 | Out-of-bounds Read vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-05-27 | CVE-2021-27488 | Out-of-bounds Write vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files. | 6.8 |
| 2021-05-27 | CVE-2021-27492 | XXE vulnerability in multiple products When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers. | 4.3 |
| 2021-05-27 | CVE-2021-27494 | Stack-based Buffer Overflow vulnerability in multiple products Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing STP files. | 6.8 |