CNNVD-202508-067 Information
CNNVD ID
CNNVD-202508-067
Related CVE
- CNNVD Published: 2025-08-01
Description (Chinese)
MaterialX是Academy Software Foundation开源的一个材料渲染软件。 MaterialX 1.39.2版本存在代码问题漏洞,该漏洞源于解析着色器节点时可能访问空指针,可能导致程序崩溃。
Description (English)
MaterialX is an open-source material rendering software for Academy Software Foundation. There is a code gap in version 1.39.2 of MaterialX, which stems from the possibility of access to an empty pointer when the colorer node is deciphered and could lead to a breakdown of the program.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
Academy Software Foundation
Published
2025-08-01
Last Modified
2026-02-24
References
https://github.com/AcademySoftwareFoundation/MaterialX/releases/tag/v1.39.3 https://github.com/ShielderSec/poc/tree/main/CVE-2025-53011 https://github.com/AcademySoftwareFoundation/MaterialX/commit/7ac1c71de5187dc29793292b5a8dc6d784192ecf https://github.com/AcademySoftwareFoundation/MaterialX/security/advisories/GHSA-7qw8-3vmf-gj32 https://access.redhat.com/security/cve/cve-2025-53011 https://nvd.nist.gov/vuln/detail/CVE-2025-53011