CVE-2025-6632 Information

Description

A maliciously crafted PSD file when linked or imported into Autodesk 3ds Max can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash read sensitive data or execute arbitrary code in the context of the current process.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Reference

https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0016

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

LOW

Base Severity

5.3

Related CNNVD

CNNVD-202508-633 (Published: 2025-08-06)