Sketchup Viewer
Approved changes feed: RSS · Atom
cpe:2.3:a:trimble:sketchup_viewer:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Trimble (382554c3-e8c7-5019-bc4f-26bba4351991) |
|---|---|
| Product | Sketchup Viewer (65f66c4f-b38a-50b0-b224-a4e61d61d9dd) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-9731 |
vulnerable | 2026-06-03 14:58:22.522655 |
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24145.
Published: 2024-11-22T20:52:19.887Z
Updated: 2024-12-04T21:38:05.019Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9730 |
vulnerable | 2026-06-03 14:58:22.522058 |
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24146.
Published: 2024-11-22T20:52:15.882Z
Updated: 2024-12-04T21:38:23.120Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9729 |
vulnerable | 2026-06-03 14:58:22.520033 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24144.
Published: 2024-11-22T20:52:11.935Z
Updated: 2024-12-04T21:38:37.686Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9728 |
vulnerable | 2026-06-03 14:58:22.519540 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24112.
Published: 2024-11-22T20:52:07.576Z
Updated: 2024-12-04T21:38:48.804Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9727 |
vulnerable | 2026-06-03 14:58:22.515913 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24111.
Published: 2024-11-22T20:52:03.170Z
Updated: 2024-12-04T21:39:00.414Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9726 |
vulnerable | 2026-06-03 14:58:22.515494 |
Trimble SketchUp Viewer SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24110.
Published: 2024-11-22T20:51:57.381Z
Updated: 2024-12-04T21:39:12.190Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9725 |
vulnerable | 2026-06-03 14:58:22.515149 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24109.
Published: 2024-11-22T20:51:52.444Z
Updated: 2024-12-04T21:39:22.435Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9724 |
vulnerable | 2026-06-03 14:58:22.514648 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24108.
Published: 2024-11-22T20:51:47.283Z
Updated: 2024-12-04T21:39:34.896Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9723 |
vulnerable | 2026-06-03 14:58:22.514322 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24107.
Published: 2024-11-22T20:51:43.626Z
Updated: 2024-11-22T21:16:10.881Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9722 |
vulnerable | 2026-06-03 14:58:22.513890 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24106.
Published: 2024-11-22T20:51:39.203Z
Updated: 2024-12-04T21:39:50.537Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9721 |
vulnerable | 2026-06-03 14:58:22.513451 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24105.
Published: 2024-11-22T20:51:34.374Z
Updated: 2024-12-04T21:40:06.970Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9720 |
vulnerable | 2026-06-03 14:58:22.513128 |
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24104.
Published: 2024-11-22T20:51:30.725Z
Updated: 2024-12-04T21:40:20.255Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9719 |
vulnerable | 2026-06-03 14:58:22.512800 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24103.
Published: 2024-11-22T20:51:26.475Z
Updated: 2024-12-04T21:40:32.795Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9718 |
vulnerable | 2026-06-03 14:58:22.512472 |
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24102.
Published: 2024-11-22T20:51:22.502Z
Updated: 2024-12-04T21:40:45.821Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9717 |
vulnerable | 2026-06-03 14:58:22.512120 |
Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24101.
Published: 2024-11-22T20:51:18.565Z
Updated: 2024-12-04T21:41:03.405Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9716 |
vulnerable | 2026-06-03 14:58:22.511673 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24100.
Published: 2024-11-22T20:51:14.651Z
Updated: 2024-12-04T21:41:18.380Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9715 |
vulnerable | 2026-06-03 14:58:22.511063 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24098.
Published: 2024-11-22T20:51:10.855Z
Updated: 2024-12-04T21:41:32.358Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9714 |
vulnerable | 2026-06-03 14:58:22.510600 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24097.
Published: 2024-11-22T20:51:06.898Z
Updated: 2024-12-04T21:41:50.180Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-7508 |
vulnerable | 2026-06-03 14:58:06.073387 |
Trimble SketchUp Viewer SKP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19575.
Published: 2024-11-22T21:31:38.790Z
Updated: 2024-11-25T16:45:26.616Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50196 |
vulnerable | 2026-06-03 14:53:30.632632 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21800.
Published: 2024-05-03T02:14:21.639Z
Updated: 2024-08-02T22:09:49.628Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50195 |
vulnerable | 2026-06-03 14:53:30.632267 |
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files.
The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21799.
Published: 2024-05-03T02:14:20.872Z
Updated: 2024-08-02T22:09:49.816Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50194 |
vulnerable | 2026-06-03 14:53:30.631885 |
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21788.
Published: 2024-05-03T02:14:20.113Z
Updated: 2024-08-02T22:09:49.799Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50193 |
vulnerable | 2026-06-03 14:53:30.631490 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21787.
Published: 2024-05-03T02:14:19.322Z
Updated: 2024-08-02T22:09:49.785Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50192 |
vulnerable | 2026-06-03 14:53:30.627961 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21786.
Published: 2024-05-03T02:14:18.582Z
Updated: 2024-08-02T22:09:49.697Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50191 |
vulnerable | 2026-06-03 14:53:30.625457 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21785.
Published: 2024-05-03T02:14:17.790Z
Updated: 2024-08-02T22:09:49.774Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50190 |
vulnerable | 2026-06-03 14:53:30.625100 |
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21784.
Published: 2024-05-03T02:14:17.079Z
Updated: 2024-08-02T22:09:49.788Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50189 |
vulnerable | 2026-06-03 14:53:30.624732 |
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21783.
Published: 2024-05-03T02:14:16.255Z
Updated: 2024-08-02T22:09:49.620Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50188 |
vulnerable | 2026-06-03 14:53:30.624337 |
Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-20792.
Published: 2024-05-03T02:14:15.489Z
Updated: 2024-08-02T22:09:49.652Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-50187 |
vulnerable | 2026-06-03 14:53:30.622418 |
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
HIGH (7.8)
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-20789.
Published: 2024-05-03T02:14:14.732Z
Updated: 2024-08-02T22:09:49.797Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.