Lucene search

AdobeAPSB23-76

HistoryDec 12, 2023 - 12:00 a.m.

APSB23-76 : Security update available for Adobe Substance3D Designer

2023-12-1200:00:00

helpx.adobe.com

adobe

substance3d

designer

security

update

vulnerabilities

exploitation

memory leak

arbitrary code execution

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

Low

EPSS

0.002

Percentile

58.0%

JSON

Adobe has released an update for Adobe Substance 3D Designer. This update addresses critical and important vulnerabilities in Substance 3D Designer. Successful exploitation could lead to memory leak and arbitrary code execution in the context of the current user.

Affected configurations

Vulners

Node

adobesubstance_3d_designerRange≤13.0.0

VendorProductVersionCPE
adobesubstance_3d_designer*cpe:2.3:a:adobe:substance_3d_designer:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	substance_3d_designer	*	cpe:2.3:a:adobe:substance_3d_designer::::::::

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

Low

EPSS

0.002

Percentile

58.0%

JSON

Related for APSB23-76