Vulnerabilities > Luxion > Keyshot Viewer
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-06 | CVE-2024-30374 | Out-of-bounds Write vulnerability in Luxion Keyshot and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-30375 | Use After Free vulnerability in Luxion Keyshot and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Use-After-Free Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5506 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5507 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5508 | Out-of-bounds Write vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-06-06 | CVE-2024-5509 | Uncontrolled Search Path Element vulnerability in Luxion Keyshot, Keyshot Network Rendering and Keyshot Viewer Luxion KeyShot BIP File Parsing Uncontrolled Search Path Element Remote Code Execution Vulnerability. | 7.8 |
| 2021-02-23 | CVE-2021-22651 | Path Traversal vulnerability in multiple products When loading a specially crafted file, Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are, while processing the extraction of temporary files, suffering from a directory traversal vulnerability, which allows an attacker to store arbitrary scripts into automatic startup folders. | 6.8 |
| 2021-02-23 | CVE-2021-22649 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 have multiple NULL pointer dereference issues while processing project files, which may allow an attacker to execute arbitrary code. | 7.8 |
| 2021-02-23 | CVE-2021-22647 | Out-of-bounds Write vulnerability in multiple products Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to multiple out-of-bounds write issues while processing project files, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-02-23 | CVE-2021-22645 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to an attack because the .bip documents display a “load” command, which can be pointed to a .dll from a remote network share. | 6.8 |