CVE-2026-7453

Description

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can cause a Stack Exhaustion vulnerability, leading to a denial-of-service condition.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected products

autodesk / 3ds_max2027 – 2027
autodesk / 3ds_max2026 – 2026

References

VENDOR_ADVISORYhttps://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0006
MISChttps://www.autodesk.com/products/autodesk-access/overview