5 matches found
CVE-2025-21166
Substance3D - Designer versions 14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-21166
CVE-2025-21166 affects Substance3D Designer, version 14.1 and earlier. The issue is an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. Documented impact is hi...
CVE-2025-21138
CVE-2025-21138 affects Substance3D Designer 14.0 and earlier. The issue is an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). A patch is available: update to a v...
CVE-2025-21136 Substance3D - Designer | Out-of-bounds Write (CWE-787)
Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-21137
Affected product : Substance3D Designer. Vulnerable versions : 14.0 and earlier. Issue type / root cause : Heap-based buffer overflow in Substance3D Designer can lead to arbitrary code execution in the context of the current user. Attack vector / prerequisites : Exploitation requires user interac...