Lucene search
PRIOn knowledge basePRION:CVE-2023-26386HistoryApr 12, 2023 - 10:15 p.m.
Design/Logic Flaw
2023-04-1222:15:00
PRIOn knowledge base
www.prio-n.com
5
logic flaw
design
adobe substance 3d stager
vulnerability
access of uninitialized pointer
disclosure of sensitive memory
aslr bypass
user interaction
malicious file
nvd
Adobe Substance 3D Stager version 2.0.1 (and earlier) is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| substance_3d_stager | le | 2.0.1 |
Related
cvelist
cvelist
nvd
nvd
CVE-2023-26386
2023-04-12 22:15:17
cve
cve
CVE-2023-26386
2023-04-12 22:15:17
cnvd
cnvd
Adobe Substance 3D Stager Buffer Overflow Vulnerability (CNVD-2023-41868)
2023-04-16 00:00:00
zdi
zdi
adobe
adobe
APSB23-26 : Security update available for Adobe Substance 3D Stager
2023-04-11 00:00:00