Lucene search
K
AdobeSubstance 3d Sampler

29 matches found

CVE
CVE
added 2024/12/10 9:2 p.m.78 views

CVE-2024-52994

CVE-2024-52994 affects Adobe Substance 3D Sampler, with versions 4.5.1 and earlier vulnerable to an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Connected ad...

7.8CVSS7.4AI score0.00319EPSS
CVE
CVE
added 2024/12/10 9:2 p.m.72 views

CVE-2024-52995

Substance3D Sampler 4.5.1 and earlier are affected by a Heap-based Buffer Overflow (CVE-2024-52995) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). Adobe’s APSB24-100 advisory and Nessus entry indicat...

7.8CVSS7.4AI score0.00364EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.67 views

CVE-2025-24442

Adobe Substance 3D Sampler is affected: versions 4.5.2 and earlier contain an out-of-bounds write (CWE-787) that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). The issue is documented across CVE-2025-244...

7.8CVSS7.9AI score0.00221EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.66 views

CVE-2023-48630

CVE-2023-48630 affects Adobe Substance 3D Sampler ≤ 4.2.1. It is due to an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction). A patch is available: update to 4.2.2 or later...

7.8CVSS7.8AI score0.00329EPSS
CVE
CVE
added 2024/08/14 8:19 a.m.65 views

CVE-2024-41861

Adobe Substance 3D Sampler has an out-of-bounds read vulnerability (CVE-2024-41861) in version 4.5 and earlier. The flaw can disclose sensitive memory and could bypass ASLR; exploitation requires a user to open a malicious PSD/file. Affected product: Substance 3D Sampler (desktop). Impact: memory...

5.5CVSS5.1AI score0.00228EPSS
CVE
CVE
added 2024/08/14 8:19 a.m.63 views

CVE-2024-41863

CVE-2024-41863 (Adobe Substance 3D Sampler) affects Substance3D Sampler 4.5 and earlier with an out-of-bounds read that could disclose memory and bypass ASLR. Exploitation requires a user to open a malicious file. Remediation is available: Adobe’s APSB24-65 advisory notes a critical/important upd...

5.5CVSS5.1AI score0.00228EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.62 views

CVE-2025-24440

CVE-2025-24440 affects Substance3D - Sampler versions

7.8CVSS7.9AI score0.00236EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.61 views

CVE-2025-24441

CVE-2025-24441 affects Substance3D Sampler 4.5.2 and earlier, with an out-of-bounds write vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Affected version information and impact are...

7.8CVSS7.9AI score0.00221EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.61 views

CVE-2025-24444

CVE-2025-24444 affects Substance3D Sampler up to and including version 4.5.2. The issue is an out-of-bounds write that could allow arbitrary code execution in the context of the current user, with exploitation requiring the victim to open a malicious file (user interaction). Several connected sou...

7.8CVSS7.9AI score0.00221EPSS
CVE
CVE
added 2024/08/14 8:19 a.m.60 views

CVE-2024-41862

Adobe Substance 3D Sampler is affected: versions 4.5 and earlier contain an out-of-bounds read that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). In the connected material, remediation is referenced via APSB24-65, noting updates to ad...

5.5CVSS5.1AI score0.00228EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.59 views

CVE-2023-48628

Affected software: Adobe Substance 3D Sampler

7.8CVSS7.8AI score0.00308EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.59 views

CVE-2025-24445

CVE-2025-24445 affects Adobe Substance 3D Sampler. Versions 4.5.2 and earlier are vulnerable to an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. The issue is referenced...

7.8CVSS7.9AI score0.00221EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.56 views

CVE-2023-48627

Adobe Substance 3D Sampler is affected by an out-of-bounds write vulnerability (CVE-2023-48627) in versions 4.2.1 and earlier, which could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). A patch is ...

7.8CVSS7.8AI score0.00308EPSS
CVE
CVE
added 2024/08/14 8:19 a.m.56 views

CVE-2024-41860

Summary: CVE-2024-41860 affects Adobe Substance 3D Sampler (Substance3D - Sampler) versions 4.5 and earlier. The vulnerability is an out-of-bounds read in PSD/file parsing that could lead to disclosure of sensitive memory and potentially bypass mitigations such as ASLR. Exploitation requires user...

5.5CVSS5.1AI score0.00228EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.56 views

CVE-2025-24439

CVE-2025-24439 relates to Adobe Substance 3D Sampler. Affected: versions 4.5.2 and earlier. Issue: heap-based buffer overflow in Substance3D Sampler could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Pu...

7.8CVSS7.8AI score0.00286EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.55 views

CVE-2025-43588

CVE-2025-43588 affects Substance3D Sampler versions 5.0 and earlier, with an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the user context. Exploitation requires a user to open a malicious file. Connected sources confirm the issue and reference an Adobe APSB25-55 upd...

7.8CVSS7.6AI score0.00222EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.54 views

CVE-2023-48625

CVE-2023-48625 affects Adobe Substance 3D Sampler

7.8CVSS7.8AI score0.00329EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.54 views

CVE-2025-43581

CVE-2025-43581 affects Substance3D Sampler (5.0 and earlier) with an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Connected sources confirm the vulnerability in S...

7.8CVSS7.6AI score0.00222EPSS
CVE
CVE
added 2025/03/11 5:36 p.m.53 views

CVE-2025-24443

Substance3D Sampler 4.5.2 and earlier are affected by a Heap-based Buffer Overflow (CWE-122) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Remediation guidance is provided by APSB25-16, wi...

7.8CVSS7.8AI score0.00269EPSS
CVE
CVE
added 2024/10/17 2:59 p.m.52 views

CVE-2024-47459

CVE-2024-47459 affects Substance3D Sampler 4.5 and earlier; a null pointer dereference can cause application DoS when a user opens a malicious file. Exploitation requires user interaction. Adobe has issued a security update (APSB24-65) and PT-2024-7320 recommends upgrading to a version later than...

5.5CVSS5.2AI score0.00195EPSS
CVE
CVE
added 2024/12/10 9:2 p.m.52 views

CVE-2024-52996

CVE-2024-52996 affects Adobe Substance 3D Sampler 4.5.1 and earlier. It is a Heap-based Buffer Overflow in the Substance3D Sampler component that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious fil...

7.8CVSS7.4AI score0.00364EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.51 views

CVE-2023-48626

CVE-2023-48626 affects Adobe Substance 3D Sampler versions 4.2.1 and earlier. The issue is an out-of-bounds write in the Sampler component that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Pub...

7.8CVSS7.8AI score0.00329EPSS
CVE
CVE
added 2023/12/13 1:23 p.m.51 views

CVE-2023-48629

Adobe Substance 3D Sampler versions 4.2.1 and earlier are affected by an out-of-bounds write vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). Affected product/version: Substance ...

7.8CVSS7.8AI score0.00308EPSS
CVE
CVE
added 2025/08/12 8:48 p.m.37 views

CVE-2025-54205

Adobe Substance 3D Sampler is affected by an out-of-bounds read (CWE-125) in versions 5.0.3 and earlier. The root cause is an out-of-bounds memory read that could lead to disclosure of sensitive memory; exploitation requires a user to open a malicious file. The vulnerability is documented across ...

5.5CVSS6.4AI score0.00189EPSS
CVE
CVE
added 2026/06/09 7:15 p.m.32 views

CVE-2026-48306

CVE-2026-48306 affects Substance3D Sampler versions 6.0.0 and earlier. The issue is an out-of-bounds write that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction, specifically the victim opening a malicious file. No remediation detai...

7.8CVSS6.1AI score0.00141EPSS
CVE
CVE
added 2026/06/09 7:15 p.m.30 views

CVE-2026-48305

Substance3D Sampler (versions 6.0.0 and earlier) is affected by an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction, as a victim must open a malicious file. This is documented across CVE sources, inc...

7.8CVSS6.1AI score0.00141EPSS
CVE
CVE
added 2026/06/09 7:15 p.m.23 views

CVE-2026-34709

CVE-2026-34709 concerns Substance3D Sampler, affected in 6.0.0 and earlier. The issue is an out-of-bounds write (CWE-787) in the software’s components, with the potential to execute arbitrary code in the context of the current user. Exploitation requires the user to open a malicious file, i.e., u...

7.8CVSS6.1AI score0.00138EPSS
CVE
CVE
added 2026/06/09 7:15 p.m.23 views

CVE-2026-34710

CVE-2026-34710 affects Substance3D – Sampler versions 6.0.0 and earlier. The issue is an out-of-bounds write (CWE-787) that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction, specifically the victim opening a malicious file. The provi...

7.8CVSS6.1AI score0.00144EPSS
CVE
CVE
added 2026/01/13 7:54 p.m.20 views

CVE-2026-21306

CVE-2026-21306 affects Adobe Substance 3D Sampler versions 5.1.0 and earlier. The issue is an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Remediation is ava...

7.8CVSS7.5AI score0.00162EPSS