CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2005-3302 – Blender 2.36 - '.BVF' File Import Python Code Execution
https://notcve.org/view.php?id=CVE-2005-3302
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call. • https://www.exploit-db.com/exploits/27728 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330895 http://secunia.com/advisories/19754 http://www.debian.org/security/2006/dsa-1039 http://www.securityfocus.com/bid/17663 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2005-3151
https://notcve.org/view.php?id=CVE-2005-3151
Buffer overflow in blenderplay in Blender Player 2.37a allows attackers to execute arbitrary code via a long command line argument. • http://secunia.com/advisories/17013 http://www.securiteam.com/exploits/5BP0T2KGVA.html http://www.securityfocus.com/bid/14983 •