2 matches found
CVE-2023-25878
Adobe Substance 3D Stager versions 2.0.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in tha...
CVE-2023-25878
CVE-2023-25878 affects Adobe Substance 3D Stager, specifically versions 2.0.0 and earlier. The issue is an out-of-bounds read in the OBJ file parsing that can disclose memory contents, with the attacker able to bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). D...