Substance 3d Painter Security Vulnerabilities and Issues — Substance 3d Painter CVE List

Lucene search

AdobeSubstance 3d Painter

42 matches found

CVE•added 2023/05/11 10:15 p.m.•67 views

CVE-2023-29273

Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the cur...

7.8CVSS7.5AI score0.00166EPSS

CVE•added 2024/05/16 9:15 a.m.•61 views

CVE-2024-30307

Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.3AI score0.00253EPSS

CVE•added 2024/11/12 8:15 p.m.•53 views

CVE-2024-47426

Substance3D - Painter versions 10.1.0 and earlier are affected by a Double Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•51 views

CVE-2024-47433

Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/05/11 10:15 p.m.•50 views

CVE-2023-29281

7.8CVSS7.5AI score0.00157EPSS

CVE•added 2024/05/16 9:15 a.m.•50 views

CVE-2024-30274

7.8CVSS7.3AI score0.00137EPSS

CVE•added 2023/05/11 10:15 p.m.•48 views

CVE-2023-29276

Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0012EPSS

CVE•added 2023/05/11 10:15 p.m.•48 views

CVE-2023-29280

7.8CVSS7.5AI score0.00157EPSS

CVE•added 2024/12/10 10:15 p.m.•48 views

CVE-2024-53957

Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00034EPSS

CVE•added 2023/05/11 10:15 p.m.•47 views

CVE-2023-29284

Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0014EPSS

CVE•added 2024/02/15 11:15 a.m.•47 views

CVE-2024-20723

Substance3D - Painter versions 9.1.1 and earlier are affected by a Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00134EPSS

CVE•added 2024/11/12 8:15 p.m.•47 views

CVE-2024-47429

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/05/11 10:15 p.m.•46 views

CVE-2023-29282

7.8CVSS7.8AI score0.00114EPSS

CVE•added 2023/05/11 10:15 p.m.•46 views

CVE-2023-29285

7.8CVSS7.8AI score0.0012EPSS

CVE•added 2025/03/11 6:15 p.m.•46 views

CVE-2025-24451

Substance3D - Painter versions 10.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.0004EPSS

CVE•added 2024/02/15 11:15 a.m.•45 views

CVE-2024-20741

Substance3D - Painter versions 9.1.1 and earlier are affected by a Write-what-where Condition vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00109EPSS

CVE•added 2024/11/12 8:15 p.m.•45 views

CVE-2024-47428

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/05/11 10:15 p.m.•44 views

CVE-2023-29278

Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.7AI score0.0012EPSS

CVE•added 2024/11/12 8:15 p.m.•44 views

CVE-2024-49520

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•44 views

CVE-2024-49525

Substance3D - Painter versions 10.1.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2024/12/10 10:15 p.m.•44 views

CVE-2024-53958

Substance3D - Painter versions 10.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.6AI score0.00034EPSS

CVE•added 2023/05/11 10:15 p.m.•43 views

CVE-2023-29275

7.8CVSS7.5AI score0.00166EPSS

CVE•added 2024/02/15 11:15 a.m.•43 views

CVE-2024-20742

Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current u...

7.8CVSS7.5AI score0.00143EPSS

CVE•added 2024/11/12 8:15 p.m.•43 views

CVE-2024-47430

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2025/03/11 6:15 p.m.•42 views

CVE-2025-24450

7.8CVSS7.9AI score0.0004EPSS

CVE•added 2024/02/15 11:15 a.m.•41 views

CVE-2024-20740

Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00109EPSS

CVE•added 2024/11/12 8:15 p.m.•41 views

CVE-2024-49516

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•41 views

CVE-2024-49517

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2023/05/11 10:15 p.m.•40 views

CVE-2023-29274

7.8CVSS7.5AI score0.00166EPSS

CVE•added 2024/11/12 8:15 p.m.•40 views

CVE-2024-47431

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•40 views

CVE-2024-49515

Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point...

7.8CVSS7.7AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•40 views

CVE-2024-49519

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/05/11 10:15 p.m.•39 views

CVE-2023-29283

Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.0014EPSS

CVE•added 2024/02/15 11:15 a.m.•39 views

CVE-2024-20744

7.8CVSS7.8AI score0.00109EPSS

CVE•added 2024/02/15 11:15 a.m.•38 views

CVE-2024-20743

7.8CVSS7.8AI score0.00109EPSS

CVE•added 2024/11/12 8:15 p.m.•38 views

CVE-2024-47427

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•37 views

CVE-2024-47434

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•36 views

CVE-2024-47432

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/12 8:15 p.m.•36 views

CVE-2024-49518

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/05 5:15 p.m.•36 views

CVE-2024-49522

Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/05/13 6:15 p.m.•32 views

CVE-2025-30322

Substance3D - Painter versions 11.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.9AI score0.00042EPSS

CVE•added 2025/06/10 5:23 p.m.•32 views

CVE-2025-47108

Substance3D - Painter versions 11.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.00037EPSS