Lucene search

K
adobeAdobeAPSB23-22
HistoryMar 14, 2023 - 12:00 a.m.

APSB23-22 : Security update available for Adobe Substance 3D Stager

2023-03-1400:00:00
helpx.adobe.com
50
adobe
substance 3d
stager
update
security
vulnerabilities
exploitation
code execution
memory leak
user

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.004 Low

EPSS

Percentile

73.0%

Adobe has released an update for Adobe Substance 3D Stager. This update addresses critical and important vulnerabilities in Adobe Substance 3D Stager including third party dependencies. Successful exploitation could lead to arbitrary code execution and memory leak in the context of the current user.

Affected configurations

Vulners
Node
adobesubstance_3d_stagerRange2.0
CPENameOperatorVersion
adobe substance 3d stagerle2.0

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.004 Low

EPSS

Percentile

73.0%