CVE-2020-6147

high

Description

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. This instance exists in the USDC file format FIELDS section decompression heap overflow.

References

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1094

http://seclists.org/fulldisclosure/2020/Nov/20

Details

Source: Mitre, NVD

Published: 2020-11-13

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.0027

Detections

Analytics