Vulnerability Details : CVE-2020-6147

CVE Name: CVE-2020-6147: Memory Corruption vulnerability on Pixar Openusd, Apple Iphone Os, Apple Ipados
Description: A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. This instance exists in the USDC file format FIELDS section decompression heap overflow.
Publish date: 2020-11-13T15:15Z
Last Update: 2022-05-13T20:57Z

CVSS Scores & Vulnerability Types

CVSS Score
Confidentiality ImpactHIGH
Integrity ImpactHIGH
Availability ImpactHIGH
Actack VectorLOCAL
Actack ComplexityLOW
Privileges RequiredNONE
User InteractionREQUIRED
Vulnerability Type(s)Memory Corruption

Products Affected By CVE-2020-6147

# Vendor Product Vulnerable Versions
1 Pixar Openusd 1
2 Apple Iphone Os 1
3 Apple Ipados 1

Detail of Verions Affected

# Product Type Vendor Product Version
1 Application Pixar Openusd 20.05
2 Operating System Apple Iphone Os *
3 Operating System Apple Ipados *

References For CVE-2020-6147

Hyperlink Resource Exploit, Third Party Advisory Mailing List, Third Party Advisory