CNNVD-202507-2712 Information

CNNVD ID

CNNVD-202507-2712

Related CVE

CVE-2025-7222

• CNNVD Published: 2025-07-21

Description (Chinese)

Luxion KeyShot是美国Luxion公司的一款用于设计三维场景照片的软件。该软件可实时3D渲染工作流程可立即显示结果，并缩短创建逼真产品照片所需的时间。 Luxion KeyShot存在缓冲区错误漏洞，该漏洞源于解析3DM文件时存在越界写入，可能导致远程代码执行。

Description (English)

Luxion KeyShot is a software set by the United States company Luxion to design three-dimensional scene photographs. The software provides real time 3D rendering workflows that immediately display results and shortens the time required to create a photo of a veritable product. Luxion KeyShot had an error loophole in the buffer zone, which stemmed from the cross-border writing of 3DM files, which could lead to remote code implementation.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

Luxion

Published

2025-07-21

Last Modified

2026-02-24

References

http://www.keyshot.com/csirt https://www.zerodayinitiative.com/advisories/ZDI-25-587/

Patch

https://www.keyshot.com/csirt/