2 matches found
CVE-2023-26409 ZDI-CAN-20313: Adobe Substance 3D Designer USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
Adobe Substance 3D Designer version 12.4.0 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the...
CVE-2023-26409
Adobe Substance 3D Designer 12.4.0 and earlier is affected by an out-of-bounds read while parsing a crafted file, potentially allowing code execution in the user’s context. Exploitation requires user interaction (victim must open a malicious file). Multiple connected sources corroborate the vulne...