CVE-2023-29277
Adobe Substance 3D Painter (v8.3.0 and earlier) contains an out-of-bounds read vulnerability in USD file parsing that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Affected product: Substance 3D Painter. Root cause: out-of-bounds read...