VYPR
Unrated severityNVD Advisory· Published Aug 6, 2025· Updated Feb 26, 2026

TGA File Parsing Memory Corruption Vulnerability

CVE-2025-6634

Description

A maliciously crafted TGA file, when linked or imported into Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Affected products

2
  • Autodesk/3ds Maxv52 versions
    cpe:2.3:a:autodesk:3ds_Max:2026.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:autodesk:3ds_Max:2026.2:*:*:*:*:*:*:*range: 2026
    • (no CPE)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.