CVE-2026-7453

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can cause a Stack Exhaustion vulnerability, leading to a denial-of-service condition.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.autodesk.com/products/autodesk-access/overview	Product
https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0006	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:autodesk:3ds_max:2026:::::::*
	cpe:2.3:a:autodesk:3ds_max:2027:::::::*

History

03 Jun 2026, 14:16

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~5.3~~	v2 : unknown v3 : 5.5

26 May 2026, 20:40

Type	Values Removed	Values Added
First Time		Autodesk 3ds Max Autodesk
References	~~() https://www.autodesk.com/products/autodesk-access/overview -~~	() https://www.autodesk.com/products/autodesk-access/overview - Product
References	~~() https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0006 -~~	() https://www.autodesk.com/trust/security-advisories/adsk-sa-2026-0006 - Vendor Advisory
CPE		cpe:2.3:a:autodesk:3ds_max:2027:::::::* cpe:2.3:a:autodesk:3ds_max:2026:::::::*

26 May 2026, 18:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-05-26 18:16

Updated : 2026-06-03 14:16

NVD link : CVE-2026-7453

Mitre link : CVE-2026-7453

CVE.ORG link : CVE-2026-7453

JSON object : View

Products Affected

autodesk

3ds_max

CWE

CWE-674

Uncontrolled Recursion

5.5 /10