Search

Find a vulnerability

Search criteria

    27 vulnerabilities found for sketchup by trimble

    CVE-2026-9264 (GCVE-0-2026-9264)

    Vulnerability from nvd – Published: 2026-05-22 01:04 – Updated: 2026-05-22 15:52
    VLAI
    Title
    Cross-Site Scripting in SketchUp Dynamic Components
    Summary
    A cross-site scripting (XSS) vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to execute arbitrary system commands and read local files without user interaction by exploiting an embedded Internet Explorer 11 browser.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-94 - Improper Control of Generation of Code
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 0 , < 2026.1.3 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-9264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-22T15:51:45.754618Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-94",
                    "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-22T15:52:45.358Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "lessThan": "2026.1.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:trimble:sketchup:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "2026.1.3",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ],
              "operator": "OR"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A cross-site scripting (XSS) vulnerability in SketchUp 2026\u0027s Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to execute arbitrary system commands and read local files without user interaction by exploiting an embedded Internet Explorer 11 browser."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "CWE-94: Improper Control of Generation of Code",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-22T01:04:03.699Z",
            "orgId": "4ac701fe-44e9-4bcd-9585-dd6449257611",
            "shortName": "Bugcrowd"
          },
          "references": [
            {
              "url": "https://trust.trimble.com/?tcuUid=52252bc0-c196-4b1f-9f13-4e4c9ba247d9"
            }
          ],
          "title": "Cross-Site Scripting in SketchUp Dynamic Components"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "4ac701fe-44e9-4bcd-9585-dd6449257611",
        "assignerShortName": "Bugcrowd",
        "cveId": "CVE-2026-9264",
        "datePublished": "2026-05-22T01:04:03.699Z",
        "dateReserved": "2026-05-22T00:57:32.121Z",
        "dateUpdated": "2026-05-22T15:52:45.358Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-15062 (GCVE-0-2025-15062)

    Vulnerability from nvd – Published: 2026-01-23 03:19 – Updated: 2026-01-23 16:35
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-27769.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 25.0.660
    Create a notification for this product.
    Date Public
    2025-12-30 01:08
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-15062",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-23T16:35:03.215763Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-01-23T16:35:13.716Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "25.0.660"
                }
              ]
            }
          ],
          "dateAssigned": "2025-12-23T21:12:59.792Z",
          "datePublic": "2025-12-30T01:08:04.922Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-27769."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-23T03:19:43.703Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-25-1198",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-1198/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Kevin Salapatek of Trend Research"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2025-15062",
        "datePublished": "2026-01-23T03:19:43.703Z",
        "dateReserved": "2025-12-23T21:12:59.764Z",
        "dateUpdated": "2026-01-23T16:35:13.716Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-2024 (GCVE-0-2025-2024)

    Vulnerability from nvd – Published: 2025-03-07 19:37 – Updated: 2025-03-07 19:52
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25210.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-457 - Use of Uninitialized Variable
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 2024-0-484-191
    Create a notification for this product.
    Date Public
    2025-03-06 20:29
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2024",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-07T19:52:34.131138Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-07T19:52:49.198Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "2024-0-484-191"
                }
              ]
            }
          ],
          "dateAssigned": "2025-03-05T23:46:05.671Z",
          "datePublic": "2025-03-06T20:29:42.271Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25210."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-457",
                  "description": "CWE-457: Use of Uninitialized Variable",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-07T19:37:21.601Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-25-111",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-111/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Rocco Calvi (@TecR0c) with TecSecurity"
          },
          "title": "Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2025-2024",
        "datePublished": "2025-03-07T19:37:21.601Z",
        "dateReserved": "2025-03-05T23:46:05.635Z",
        "dateUpdated": "2025-03-07T19:52:49.198Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7511 (GCVE-0-2024-7511)

    Vulnerability from nvd – Published: 2024-11-22 21:32 – Updated: 2024-11-26 15:13
    VLAI
    Title
    Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
    Summary
    Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files embedded in SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-23000.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Pro Affected: 23.1.340
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7511",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:12:10.224216Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-26T15:13:11.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Pro",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "23.1.340"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:40.020Z",
          "datePublic": "2024-08-05T20:19:39.639Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PSD files embedded in SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-23000."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:32:18.052Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1057",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1057/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Vladislav Berghici"
          },
          "title": "Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7511",
        "datePublished": "2024-11-22T21:32:18.052Z",
        "dateReserved": "2024-08-05T20:10:39.991Z",
        "dateUpdated": "2024-11-26T15:13:11.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7510 (GCVE-0-2024-7510)

    Vulnerability from nvd – Published: 2024-11-22 21:32 – Updated: 2024-11-25 16:44
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19631.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 22.0.354.0
    Create a notification for this product.
    trimble sketchup Affected: 22.0.354.0
        cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.354.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7510",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-25T16:42:32.634655Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-25T16:44:15.177Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.354.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:35.850Z",
          "datePublic": "2024-08-05T20:19:34.783Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19631."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:32:07.921Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1056",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1056/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Michael DePlante (@izobashi) of Trend Micro\u0027s Zero Day Initiative"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7510",
        "datePublished": "2024-11-22T21:32:07.921Z",
        "dateReserved": "2024-08-05T20:10:35.822Z",
        "dateUpdated": "2024-11-25T16:44:15.177Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7509 (GCVE-0-2024-7509)

    Vulnerability from nvd – Published: 2024-11-22 21:31 – Updated: 2024-11-25 16:44
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19576.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 22.0.354.0
    Create a notification for this product.
    trimble sketchup Affected: 22.0.354.0
        cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.354.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7509",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-25T16:42:40.203108Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-25T16:44:53.728Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.354.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:31.462Z",
          "datePublic": "2024-08-05T20:19:29.699Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19576."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121: Stack-based Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:31:56.368Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1055",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1055/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7509",
        "datePublished": "2024-11-22T21:31:56.368Z",
        "dateReserved": "2024-08-05T20:10:31.426Z",
        "dateUpdated": "2024-11-25T16:44:53.728Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9731 (GCVE-0-2024-9731)

    Vulnerability from nvd – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24145.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:22
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9731",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:30.913117Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:05.019Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:17.914Z",
          "datePublic": "2024-11-12T22:22:28.586Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24145."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-119",
                  "description": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:19.887Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1485",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1485/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9731",
        "datePublished": "2024-11-22T20:52:19.887Z",
        "dateReserved": "2024-10-09T19:39:17.898Z",
        "dateUpdated": "2024-12-04T21:38:05.019Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9730 (GCVE-0-2024-9730)

    Vulnerability from nvd – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24146.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-10-11 22:10
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9730",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:32.098831Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:23.120Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:13.623Z",
          "datePublic": "2024-10-11T22:10:30.764Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24146."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-119",
                  "description": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:15.882Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1381",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1381/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9730",
        "datePublished": "2024-11-22T20:52:15.882Z",
        "dateReserved": "2024-10-09T19:39:13.599Z",
        "dateUpdated": "2024-12-04T21:38:23.120Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9729 (GCVE-0-2024-9729)

    Vulnerability from nvd – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24144.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-10-11 22:10
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9729",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:33.402450Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:37.686Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:09.999Z",
          "datePublic": "2024-10-11T22:10:23.785Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24144."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:11.935Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1380",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1380/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9729",
        "datePublished": "2024-11-22T20:52:11.935Z",
        "dateReserved": "2024-10-09T19:39:09.985Z",
        "dateUpdated": "2024-12-04T21:38:37.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9713 (GCVE-0-2024-9713)

    Vulnerability from nvd – Published: 2024-11-22 20:51 – Updated: 2024-12-04 21:29
    VLAI
    Title
    Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23885.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Pro Affected: 24.0.484
    Create a notification for this product.
    trimble sketchup_pro Affected: 24.0.484
        cpe:2.3:a:trimble:sketchup_pro:24.0.484:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_pro:24.0.484:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_pro",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "24.0.484"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9713",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:53.871752Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:29:26.747Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Pro",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "24.0.484"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:38:03.805Z",
          "datePublic": "2024-11-12T22:21:23.255Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23885."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:51:03.066Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1474",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1474/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9713",
        "datePublished": "2024-11-22T20:51:03.066Z",
        "dateReserved": "2024-10-09T19:38:03.786Z",
        "dateUpdated": "2024-12-04T21:29:26.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9712 (GCVE-0-2024-9712)

    Vulnerability from nvd – Published: 2024-11-22 20:50 – Updated: 2024-12-04 21:30
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23530.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 23.1.340
    Create a notification for this product.
    trimble sketchup Affected: 23.1.340
        cpe:2.3:a:trimble:sketchup:23.1.340:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:23.1.340:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.1.340"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9712",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:55.205774Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:30:34.169Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "23.1.340"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:37:57.592Z",
          "datePublic": "2024-11-12T22:21:17.604Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23530."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:50:58.448Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1473",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1473/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9712",
        "datePublished": "2024-11-22T20:50:58.448Z",
        "dateReserved": "2024-10-09T19:37:57.560Z",
        "dateUpdated": "2024-12-04T21:30:34.169Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-7388 (GCVE-0-2013-7388)

    Vulnerability from nvd – Published: 2014-07-01 17:00 – Updated: 2024-08-06 18:09
    VLAI
    Summary
    Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP). NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1).
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-05-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:09:16.240Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
              },
              {
                "name": "sketchup-cve20133664-bo(84723)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
              },
              {
                "name": "60248",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/60248"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
              },
              {
                "name": "53635",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/53635"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-05-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).  NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
            },
            {
              "name": "sketchup-cve20133664-bo(84723)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
            },
            {
              "name": "60248",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/60248"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
            },
            {
              "name": "53635",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/53635"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-7388",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).  NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.binamuse.com/advisories/BINA-20130521B.txt",
                  "refsource": "MISC",
                  "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
                },
                {
                  "name": "sketchup-cve20133664-bo(84723)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
                },
                {
                  "name": "60248",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/60248"
                },
                {
                  "name": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html",
                  "refsource": "MISC",
                  "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
                },
                {
                  "name": "53635",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/53635"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-7388",
        "datePublished": "2014-07-01T17:00:00.000Z",
        "dateReserved": "2014-07-01T00:00:00.000Z",
        "dateUpdated": "2024-08-06T18:09:16.240Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-3664 (GCVE-0-2013-3664)

    Vulnerability from nvd – Published: 2014-07-01 17:00 – Updated: 2024-08-06 16:14
    VLAI
    Summary
    Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-05-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:14:56.582Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
              },
              {
                "name": "sketchup-cve20133664-bo(84723)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
              },
              {
                "name": "60248",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/60248"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
              },
              {
                "name": "53635",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/53635"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-05-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662.  NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
            },
            {
              "name": "sketchup-cve20133664-bo(84723)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
            },
            {
              "name": "60248",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/60248"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
            },
            {
              "name": "53635",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/53635"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-3664",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662.  NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
                },
                {
                  "name": "http://www.binamuse.com/advisories/BINA-20130521A.txt",
                  "refsource": "MISC",
                  "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
                },
                {
                  "name": "sketchup-cve20133664-bo(84723)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
                },
                {
                  "name": "60248",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/60248"
                },
                {
                  "name": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html",
                  "refsource": "MISC",
                  "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
                },
                {
                  "name": "53635",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/53635"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-3664",
        "datePublished": "2014-07-01T17:00:00.000Z",
        "dateReserved": "2013-05-24T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:14:56.582Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-9264 (GCVE-0-2026-9264)

    Vulnerability from cvelistv5 – Published: 2026-05-22 01:04 – Updated: 2026-05-22 15:52
    VLAI
    Title
    Cross-Site Scripting in SketchUp Dynamic Components
    Summary
    A cross-site scripting (XSS) vulnerability in SketchUp 2026's Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to execute arbitrary system commands and read local files without user interaction by exploiting an embedded Internet Explorer 11 browser.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-94 - Improper Control of Generation of Code
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 0 , < 2026.1.3 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-9264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-22T15:51:45.754618Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-94",
                    "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-22T15:52:45.358Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "lessThan": "2026.1.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:trimble:sketchup:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "2026.1.3",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ],
              "operator": "OR"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A cross-site scripting (XSS) vulnerability in SketchUp 2026\u0027s Dynamic Components feature allows remote code execution and local file exfiltration through maliciously crafted SKP files. The vulnerability stems from improper input sanitization in the component options window, enabling attackers to execute arbitrary system commands and read local files without user interaction by exploiting an embedded Internet Explorer 11 browser."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "CWE-94: Improper Control of Generation of Code",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-22T01:04:03.699Z",
            "orgId": "4ac701fe-44e9-4bcd-9585-dd6449257611",
            "shortName": "Bugcrowd"
          },
          "references": [
            {
              "url": "https://trust.trimble.com/?tcuUid=52252bc0-c196-4b1f-9f13-4e4c9ba247d9"
            }
          ],
          "title": "Cross-Site Scripting in SketchUp Dynamic Components"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "4ac701fe-44e9-4bcd-9585-dd6449257611",
        "assignerShortName": "Bugcrowd",
        "cveId": "CVE-2026-9264",
        "datePublished": "2026-05-22T01:04:03.699Z",
        "dateReserved": "2026-05-22T00:57:32.121Z",
        "dateUpdated": "2026-05-22T15:52:45.358Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-15062 (GCVE-0-2025-15062)

    Vulnerability from cvelistv5 – Published: 2026-01-23 03:19 – Updated: 2026-01-23 16:35
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-27769.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 25.0.660
    Create a notification for this product.
    Date Public
    2025-12-30 01:08
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-15062",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-23T16:35:03.215763Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-01-23T16:35:13.716Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "25.0.660"
                }
              ]
            }
          ],
          "dateAssigned": "2025-12-23T21:12:59.792Z",
          "datePublic": "2025-12-30T01:08:04.922Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-27769."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-23T03:19:43.703Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-25-1198",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-1198/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Kevin Salapatek of Trend Research"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2025-15062",
        "datePublished": "2026-01-23T03:19:43.703Z",
        "dateReserved": "2025-12-23T21:12:59.764Z",
        "dateUpdated": "2026-01-23T16:35:13.716Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-2024 (GCVE-0-2025-2024)

    Vulnerability from cvelistv5 – Published: 2025-03-07 19:37 – Updated: 2025-03-07 19:52
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25210.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-457 - Use of Uninitialized Variable
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 2024-0-484-191
    Create a notification for this product.
    Date Public
    2025-03-06 20:29
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2024",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-07T19:52:34.131138Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-07T19:52:49.198Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "2024-0-484-191"
                }
              ]
            }
          ],
          "dateAssigned": "2025-03-05T23:46:05.671Z",
          "datePublic": "2025-03-06T20:29:42.271Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25210."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-457",
                  "description": "CWE-457: Use of Uninitialized Variable",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-07T19:37:21.601Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-25-111",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-111/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Rocco Calvi (@TecR0c) with TecSecurity"
          },
          "title": "Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2025-2024",
        "datePublished": "2025-03-07T19:37:21.601Z",
        "dateReserved": "2025-03-05T23:46:05.635Z",
        "dateUpdated": "2025-03-07T19:52:49.198Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7511 (GCVE-0-2024-7511)

    Vulnerability from cvelistv5 – Published: 2024-11-22 21:32 – Updated: 2024-11-26 15:13
    VLAI
    Title
    Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
    Summary
    Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files embedded in SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-23000.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Pro Affected: 23.1.340
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7511",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:12:10.224216Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-26T15:13:11.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Pro",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "23.1.340"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:40.020Z",
          "datePublic": "2024-08-05T20:19:39.639Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PSD files embedded in SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-23000."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:32:18.052Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1057",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1057/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Vladislav Berghici"
          },
          "title": "Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7511",
        "datePublished": "2024-11-22T21:32:18.052Z",
        "dateReserved": "2024-08-05T20:10:39.991Z",
        "dateUpdated": "2024-11-26T15:13:11.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7510 (GCVE-0-2024-7510)

    Vulnerability from cvelistv5 – Published: 2024-11-22 21:32 – Updated: 2024-11-25 16:44
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19631.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 22.0.354.0
    Create a notification for this product.
    trimble sketchup Affected: 22.0.354.0
        cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.354.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7510",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-25T16:42:32.634655Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-25T16:44:15.177Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.354.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:35.850Z",
          "datePublic": "2024-08-05T20:19:34.783Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19631."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:32:07.921Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1056",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1056/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Michael DePlante (@izobashi) of Trend Micro\u0027s Zero Day Initiative"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7510",
        "datePublished": "2024-11-22T21:32:07.921Z",
        "dateReserved": "2024-08-05T20:10:35.822Z",
        "dateUpdated": "2024-11-25T16:44:15.177Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-7509 (GCVE-0-2024-7509)

    Vulnerability from cvelistv5 – Published: 2024-11-22 21:31 – Updated: 2024-11-25 16:44
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19576.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 22.0.354.0
    Create a notification for this product.
    trimble sketchup Affected: 22.0.354.0
        cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-05 20:19
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:22.0.354.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.354.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-7509",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-25T16:42:40.203108Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-25T16:44:53.728Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.354.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-08-05T20:10:31.462Z",
          "datePublic": "2024-08-05T20:19:29.699Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-19576."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121: Stack-based Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T21:31:56.368Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1055",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1055/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-7509",
        "datePublished": "2024-11-22T21:31:56.368Z",
        "dateReserved": "2024-08-05T20:10:31.426Z",
        "dateUpdated": "2024-11-25T16:44:53.728Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9731 (GCVE-0-2024-9731)

    Vulnerability from cvelistv5 – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24145.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:22
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9731",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:30.913117Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:05.019Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:17.914Z",
          "datePublic": "2024-11-12T22:22:28.586Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24145."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-119",
                  "description": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:19.887Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1485",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1485/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9731",
        "datePublished": "2024-11-22T20:52:19.887Z",
        "dateReserved": "2024-10-09T19:39:17.898Z",
        "dateUpdated": "2024-12-04T21:38:05.019Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9730 (GCVE-0-2024-9730)

    Vulnerability from cvelistv5 – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24146.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-10-11 22:10
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9730",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:32.098831Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:23.120Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:13.623Z",
          "datePublic": "2024-10-11T22:10:30.764Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24146."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-119",
                  "description": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:15.882Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1381",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1381/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9730",
        "datePublished": "2024-11-22T20:52:15.882Z",
        "dateReserved": "2024-10-09T19:39:13.599Z",
        "dateUpdated": "2024-12-04T21:38:23.120Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9729 (GCVE-0-2024-9729)

    Vulnerability from cvelistv5 – Published: 2024-11-22 20:52 – Updated: 2024-12-04 21:38
    VLAI
    Title
    Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24144.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Viewer Affected: 22.0.316.0
    Create a notification for this product.
    trimble sketchup_viewer Affected: 22.0.316.0
        cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-10-11 22:10
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_viewer:22.0.316.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_viewer",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.316.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9729",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:33.402450Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:38:37.686Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Viewer",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.316.0"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:39:09.999Z",
          "datePublic": "2024-10-11T22:10:23.785Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24144."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:52:11.935Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1380",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1380/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Mat Powell of Trend Micro Zero Day Initiative"
          },
          "title": "Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9729",
        "datePublished": "2024-11-22T20:52:11.935Z",
        "dateReserved": "2024-10-09T19:39:09.985Z",
        "dateUpdated": "2024-12-04T21:38:37.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9713 (GCVE-0-2024-9713)

    Vulnerability from cvelistv5 – Published: 2024-11-22 20:51 – Updated: 2024-12-04 21:29
    VLAI
    Title
    Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23885.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Pro Affected: 24.0.484
    Create a notification for this product.
    trimble sketchup_pro Affected: 24.0.484
        cpe:2.3:a:trimble:sketchup_pro:24.0.484:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup_pro:24.0.484:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup_pro",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "24.0.484"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9713",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:53.871752Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:29:26.747Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp Pro",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "24.0.484"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:38:03.805Z",
          "datePublic": "2024-11-12T22:21:23.255Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23885."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:51:03.066Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1474",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1474/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp Pro SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9713",
        "datePublished": "2024-11-22T20:51:03.066Z",
        "dateReserved": "2024-10-09T19:38:03.786Z",
        "dateUpdated": "2024-12-04T21:29:26.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-9712 (GCVE-0-2024-9712)

    Vulnerability from cvelistv5 – Published: 2024-11-22 20:50 – Updated: 2024-12-04 21:30
    VLAI
    Title
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability
    Summary
    Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23530.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    Trimble SketchUp Affected: 23.1.340
    Create a notification for this product.
    trimble sketchup Affected: 23.1.340
        cpe:2.3:a:trimble:sketchup:23.1.340:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-11-12 22:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:trimble:sketchup:23.1.340:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "sketchup",
                "vendor": "trimble",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.1.340"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9712",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-26T15:15:55.205774Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:30:34.169Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "SketchUp",
              "vendor": "Trimble",
              "versions": [
                {
                  "status": "affected",
                  "version": "23.1.340"
                }
              ]
            }
          ],
          "dateAssigned": "2024-10-09T19:37:57.592Z",
          "datePublic": "2024-11-12T22:21:17.604Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SKP files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23530."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416: Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-22T20:50:58.448Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-24-1473",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1473/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2024-9712",
        "datePublished": "2024-11-22T20:50:58.448Z",
        "dateReserved": "2024-10-09T19:37:57.560Z",
        "dateUpdated": "2024-12-04T21:30:34.169Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-7388 (GCVE-0-2013-7388)

    Vulnerability from cvelistv5 – Published: 2014-07-01 17:00 – Updated: 2024-08-06 18:09
    VLAI
    Summary
    Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP). NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1).
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-05-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:09:16.240Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
              },
              {
                "name": "sketchup-cve20133664-bo(84723)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
              },
              {
                "name": "60248",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/60248"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
              },
              {
                "name": "53635",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/53635"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-05-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).  NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
            },
            {
              "name": "sketchup-cve20133664-bo(84723)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
            },
            {
              "name": "60248",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/60248"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
            },
            {
              "name": "53635",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/53635"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-7388",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).  NOTE: this issue was SPLIT from CVE-2013-3664 due to different affected products and codebases (ADT1)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.binamuse.com/advisories/BINA-20130521B.txt",
                  "refsource": "MISC",
                  "url": "http://www.binamuse.com/advisories/BINA-20130521B.txt"
                },
                {
                  "name": "sketchup-cve20133664-bo(84723)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
                },
                {
                  "name": "60248",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/60248"
                },
                {
                  "name": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html",
                  "refsource": "MISC",
                  "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
                },
                {
                  "name": "53635",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/53635"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-7388",
        "datePublished": "2014-07-01T17:00:00.000Z",
        "dateReserved": "2014-07-01T00:00:00.000Z",
        "dateUpdated": "2024-08-06T18:09:16.240Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-3664 (GCVE-0-2013-3664)

    Vulnerability from cvelistv5 – Published: 2014-07-01 17:00 – Updated: 2024-08-06 16:14
    VLAI
    Summary
    Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662. NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-05-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:14:56.582Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
              },
              {
                "name": "sketchup-cve20133664-bo(84723)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
              },
              {
                "name": "60248",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/60248"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
              },
              {
                "name": "53635",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/53635"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-05-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662.  NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
            },
            {
              "name": "sketchup-cve20133664-bo(84723)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
            },
            {
              "name": "60248",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/60248"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
            },
            {
              "name": "53635",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/53635"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-3664",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662.  NOTE: this issue was SPLIT due to different affected products and codebases (ADT1); CVE-2013-7388 has been assigned to the paintlib issue."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20130531 CVE-2013-3664 - Sketchup Multiple Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2013-06/0008.html"
                },
                {
                  "name": "http://www.binamuse.com/advisories/BINA-20130521A.txt",
                  "refsource": "MISC",
                  "url": "http://www.binamuse.com/advisories/BINA-20130521A.txt"
                },
                {
                  "name": "sketchup-cve20133664-bo(84723)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84723"
                },
                {
                  "name": "60248",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/60248"
                },
                {
                  "name": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html",
                  "refsource": "MISC",
                  "url": "http://blog.binamuse.com/2013/05/multiple-vulnerabilities-on-sketchup.html"
                },
                {
                  "name": "53635",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/53635"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-3664",
        "datePublished": "2014-07-01T17:00:00.000Z",
        "dateReserved": "2013-05-24T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:14:56.582Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    VAR-201602-0173

    Vulnerability from variot - Updated: 2025-04-13 23:34

    Multiple use-after-free vulnerabilities in SAP 3D Visual Enterprise Viewer allow remote attackers to execute arbitrary code via a crafted SketchUp document. NOTE: the primary affected product may be SketchUp. In addition, this case SketchUp May be a vulnerability.Skillfully crafted by a third party SketchUp Arbitrary code may be executed through the documentation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of SketchUp documents. With a specially crafted SketchUp document, an attacker can force a dangling pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "3d visual enterprise viewer",
            "scope": null,
            "trust": 4.8,
            "vendor": "sap",
            "version": null
          },
          {
            "_id": null,
            "model": "3d visual enterprise viewer",
            "scope": "eq",
            "trust": 1.2,
            "vendor": "sap",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sketchup",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "google",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sketchup",
            "scope": null,
            "trust": 0.8,
            "vendor": "trimble",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:sap:3d_visual_enterprise_viewer",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:trimble:sketchup",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Steven Seeley of Source Incite",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          }
        ],
        "trust": 2.8
      },
      "cve": "CVE-2016-2536",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2016-2536",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 4.6,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CNVD-2016-01480",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.9 [IVD]"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.8,
                "id": "CVE-2016-2536",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "ZDI",
                "id": "CVE-2016-2536",
                "trust": 2.8,
                "value": "MEDIUM"
              },
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-2536",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2016-2536",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2016-01480",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201602-396",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "IVD",
                "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d",
                "trust": 0.2,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Multiple use-after-free vulnerabilities in SAP 3D Visual Enterprise Viewer allow remote attackers to execute arbitrary code via a crafted SketchUp document.  NOTE: the primary affected product may be SketchUp. In addition, this case SketchUp May be a vulnerability.Skillfully crafted by a third party SketchUp Arbitrary code may be executed through the documentation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of SketchUp documents. With a specially crafted SketchUp document, an attacker can force a dangling pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          },
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          }
        ],
        "trust": 4.86
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-2536",
            "trust": 5.2
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176",
            "trust": 3.7
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173",
            "trust": 3.1
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174",
            "trust": 3.1
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175",
            "trust": 3.1
          },
          {
            "db": "BID",
            "id": "83307",
            "trust": 1.0
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-2974",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-2976",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-2975",
            "trust": 0.7
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-2979",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396",
            "trust": 0.6
          },
          {
            "db": "IVD",
            "id": "D4504B9C-1E42-11E6-ABEF-000C29C66E3D",
            "trust": 0.2
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          }
        ]
      },
      "id": "VAR-201602-0173",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          }
        ],
        "trust": 0.08
      },
      "iot_taxonomy": {
        "_id": null,
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          }
        ]
      },
      "last_update_date": "2025-04-13T23:34:02.296000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 120 day deadline.06/30/2015 - Disclosed vulnerability reports to vendor09/28/2015 - The vendor let ZDI know that they would need an extension09/29/2015 - ZDI agreed to an extension02/09/2016 - ZDI notified the vendor that these would move to 0-day02/09/2016 - The vendor replied that: \"This issue is related to SketchUp having this vulnerability. SketchUp has refused to provide a patch.  Is it still possible to ask for an \u0027exceptional\u0027 extension for us to manage a work-around?\"02/10/2016 - ZDI responded \"No further extension can be granted.\"-- Mitigation:Given the stated purpose of SAP 3D Virtual Enterprise Viewer, and the nature of the vulnerability, the only salient mitigation strategy is to restrict interaction with the application to trusted files.-- Vendor Response:On 2/26/2016 SAP notified ZDI of the following available updates:2281195 \u003c - Potential remote termination of running processes in SAP Visual Enterprise Author, Generator and ViewerAn attacker can remotely exploit SAP Visual Enterprise Author, Generator and Viewer version 8.0, which may lead to application termination.Customers are advised to apply Note 2281195 \u003c  immediately. We would like to remind our customers to secure SAP systems by installing all available security patches. You can find security notes and patches in the SAP Support Portal here \u003chttps://support.sap.com/securitynotes\u003e .",
            "trust": 2.8,
            "url": "https://service.sap.com/sap/support/notes/2281195\u003e"
          },
          {
            "title": "SAP 3D Visual Enterprise Viewer",
            "trust": 0.8,
            "url": "https://wiki.scn.sap.com/wiki/display/SVE/SAP+3D+Visual+Enterprise+Viewer"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-399",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 5.6,
            "url": "https://service.sap.com/sap/support/notes/2281195\u003e"
          },
          {
            "trust": 2.8,
            "url": "https://support.sap.com/securitynotes\u003e"
          },
          {
            "trust": 2.4,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-173"
          },
          {
            "trust": 2.4,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-174"
          },
          {
            "trust": 2.4,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-175"
          },
          {
            "trust": 2.4,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-176"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/bid/83307"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-2536"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-2536"
          },
          {
            "trust": 0.6,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-176/"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d",
            "ident": null
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-173",
            "ident": null
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174",
            "ident": null
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176",
            "ident": null
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175",
            "ident": null
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-01480",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001539",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2016-2536",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-03-08T00:00:00",
            "db": "IVD",
            "id": "d4504b9c-1e42-11e6-abef-000c29c66e3d",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-173",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-174",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-176",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-175",
            "ident": null
          },
          {
            "date": "2016-03-08T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-01480",
            "ident": null
          },
          {
            "date": "2016-03-02T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-001539",
            "ident": null
          },
          {
            "date": "2016-02-23T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201602-396",
            "ident": null
          },
          {
            "date": "2016-02-22T15:59:03.097000",
            "db": "NVD",
            "id": "CVE-2016-2536",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-173",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-174",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-176",
            "ident": null
          },
          {
            "date": "2016-02-18T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-175",
            "ident": null
          },
          {
            "date": "2016-03-08T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-01480",
            "ident": null
          },
          {
            "date": "2016-03-02T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-001539",
            "ident": null
          },
          {
            "date": "2016-02-23T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201602-396",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-2536",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "(0Day) SAP 3D Visual Enterprise Viewer SketchUp document Use-After-Free Remote Code Execution Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-173"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-174"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-176"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-175"
          }
        ],
        "trust": 2.8
      },
      "type": {
        "_id": null,
        "data": "resource management error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201602-396"
          }
        ],
        "trust": 0.6
      }
    }