Lucene search
Mat Powell of Trend Micro Zero Day InitiativeZDI-23-888HistoryJun 16, 2023 - 12:00 a.m.
Adobe Substance 3D Designer SBS File Parsing Uninitialized Variable Remote Code Execution Vulnerability
2023-06-1600:00:00
Mat Powell of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
5
adobe substance 3d
sbs files
remote code execution
vulnerability
adobe substance 3d designer
memory initialization
0.004 Low
EPSS
Percentile
74.8%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Substance 3D Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SBS files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
adobe
adobe
APSB23-39 : Security update available for Adobe Substance 3D Designer
2023-06-13 00:00:00
prion
prion
Null pointer dereference
2023-06-15 19:15:00
nvd
nvd
CVE-2023-21618
2023-06-15 19:15:10
cvelist
cvelist
cve
cve
CVE-2023-21618
2023-06-15 19:15:10