These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2016-9307 covers multiple buffer overflows in Autodesk FBX-SDK before 2017.1. According to the NVD record, malformed 3DS format files can trigger arbitrary code execution when the SDK reads or converts them, and NVD rates the issue as critical (CVSS 9.8).
CVE-2016-9306 is a critical memory-corruption issue in Autodesk FBX SDK before 2017.1. According to NVD, multiple buffer overflows can be triggered when the SDK reads or converts malformed DAE format files, creating a path to arbitrary code execution. The published CVSS vector is network-reachable with no privileges or user interaction required, and impact is rated high for confidentiality, integrity, and [truncated]
CVE-2016-9305 is a critical vulnerability in Autodesk FBX-SDK versions before 2017.1. According to the NVD record and Autodesk advisory reference, malformed FBX files can trigger improper handling of type mismatches and previously deleted objects, which may expose uninitialized pointers. The NVD classifies the issue as high-severity network-reachable exposure with no privileges or user interaction require [truncated]
CVE-2016-9304 was publicly disclosed on 2017-01-25. The supplied NVD record describes multiple buffer overflows in Autodesk FBX-SDK versions through 2017.0, with a potential outcome of arbitrary code execution when processing malformed DFX format files. NVD rates the issue CVSS 3.0 8.8 High with network attack characteristics, no privileges required, and user interaction required, indicating a serious ris [truncated]
CVE-2016-9303 is a critical memory-corruption issue in Autodesk FBX-SDK before 2017.1. According to the CVE/NVD record, malformed FBX format files can trigger multiple buffer overflows during reading or conversion, which may lead to arbitrary code execution or an infinite-loop condition.