Lucene search
China National Vulnerability DatabaseCNVD-2024-12465HistoryFeb 22, 2024 - 12:00 a.m.
Adobe Substance 3D Painter Buffer Overflow Vulnerability (CNVD-2024-12465)
2024-02-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
adobe substance 3d painter
buffer overflow
vulnerability
out-of-bounds write
arbitrary code execution
unauthorized commands
system privileges
illegal operations
audobee
cnvd-2024-12465
Adobe Substance 3D Painter is a 3D texturing application from the American company Audobee (Adobe). A buffer overflow vulnerability exists in Adobe Substance 3D Painter 9.1.1 and prior versions, which stems from the presence of an out-of-bounds write vulnerability that could lead to the execution of arbitrary code in the current user’s environment. An attacker can exploit the vulnerability to execute unauthorized commands, which can be used to gain system privileges and consequently perform various illegal operations.
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe substance 3d painter | le | 9.1.1 |
Related
cve
cve
CVE-2024-20743
2024-02-15 11:15:13
cvelist
cvelist
nvd
nvd
CVE-2024-20743
2024-02-15 11:15:13
prion
prion
Cross site scripting
2024-02-15 11:15:00
vulnrichment
vulnrichment
adobe
adobe
APSB24-04 : Security update available for Adobe Substance 3D Painter
2024-02-13 00:00:00
nessus
nessus