CVE-2023-25870
CVE-2023-25870 affects Adobe Substance 3D Stager versions 2.0.0 and earlier. The issue is an out-of-bounds write in the SVG file parsing that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). ...