The host is installed with Microsoft 3D Builder before 20.0.4.0 and is prone to a remote code execution vulnerability. A flaw is present in the application, a specially crafted file. Successful exploitation allows attackers to cause unspecified impact.