Lucene search
China National Vulnerability DatabaseCNVD-2024-12464HistoryFeb 22, 2024 - 12:00 a.m.
Adobe Substance 3D Painter Buffer Overflow Vulnerability (CNVD-2024-12464)
2024-02-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
adobe substance 3d painter
buffer overflow
vulnerability
audobee
arbitrary code
execution
unauthorized commands
system privileges
illegal operations
cnvd-2024-12464
Adobe Substance 3D Painter is a 3D texturing application from the American company Audobee (Adobe). A buffer overflow vulnerability exists in Adobe Substance 3D Painter 9.1.1 and prior versions, which stems from the presence of an out-of-bounds write that could lead to the execution of arbitrary code in the context of the current user. An attacker can exploit the vulnerability to execute unauthorized commands, which can be used to gain system privileges and consequently perform various illegal operations.
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe substance 3d painter | le | 9.1.1 |
Related
nvd
nvd
CVE-2024-20744
2024-02-15 11:15:14
cve
cve
CVE-2024-20744
2024-02-15 11:15:14
cvelist
cvelist
prion
prion
Cross site scripting
2024-02-15 11:15:00
nessus
nessus
adobe
adobe
APSB24-04 : Security update available for Adobe Substance 3D Painter
2024-02-13 00:00:00