Multiple Vulnerabilities in Blender

Cisco Talos researchers discovered multiple vulnerabilities in Blender, an open-source tool used to visualize, model, and animate 3D content. If exploited, these vulnerabilities could allow a threat actor to execute arbitrary code on the affected host. Talos responsibly disclosed the vulnerabilities; however, Blender has yet to release a patch. The NJCCIC recommends all Blender users and administrators review the Talos Vulnerability Spotlight for more information, only open a file with Blender that they fully trust, and keep the tool updated with the latest patches.