Lucene search

AdobeAPSB23-74

HistoryDec 12, 2023 - 12:00 a.m.

APSB23-74 : Security update available for Adobe Substance3D Sampler

2023-12-1200:00:00

helpx.adobe.com

adobe

substance3d

sampler

update

critical

vulnerabilities

arbitrary code execution

software

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

37.3%

JSON

Adobe has released an update for Adobe Substance 3D Sampler. This update addresses critical vulnerabilities in Adobe Substance 3D Sampler. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Affected configurations

Vulners

Node

adobesubstance_3d_samplerRange≤4.2.1

VendorProductVersionCPE
adobesubstance_3d_sampler*cpe:2.3:a:adobe:substance_3d_sampler:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	substance_3d_sampler	*	cpe:2.3:a:adobe:substance_3d_sampler::::::::

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

37.3%

JSON

Related for APSB23-74