| Severity |
|
| Remote |
|
| Type |
| - |
Unknown |
| + |
Arbitrary code execution |
|
| Description |
| + |
An out-of-bounds write vulnerability exists in the Obj.cpp load_obj() functionality of Prusa Research PrusaSlicer before version 2.3.0. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. |
|
| References |
| + |
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1219 |
| + |
https://github.com/prusa3d/PrusaSlicer/commit/ba9a9b4e7ac8863f52923a90a9290a8ab0660e89 |
|
| Notes |
|