Adobe Substance3D - Viewer vulnerabilities

CVE-2025-54280 [HIGH] CWE-787 CVE-2025-54280: Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54273 [HIGH] CWE-787 CVE-2025-54273: Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54274 [HIGH] CWE-121 CVE-2025-54274: Substance3D - Viewer versions 0.25.2 and earlier are affected by a Stack-based Buffer Overflow vulne Substance3D - Viewer versions 0.25.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54275 [MEDIUM] CWE-787 CVE-2025-54275: Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could lead to application denial-of-service. An attacker could leverage this vulnerability to crash the application or make it unavailable. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54245 [HIGH] CWE-787 CVE-2025-54245: Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54243 [HIGH] CWE-787 CVE-2025-54243: Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-54244 [HIGH] CWE-122 CVE-2025-54244: Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow vulner Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-49569 [HIGH] CWE-787 CVE-2025-49569: Substance3D - Viewer versions 0.25 and earlier are affected by an out-of-bounds write vulnerability Substance3D - Viewer versions 0.25 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-49560 [HIGH] CWE-122 CVE-2025-49560: Substance3D - Viewer versions 0.25 and earlier are affected by a Heap-based Buffer Overflow vulnerab Substance3D - Viewer versions 0.25 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-43582 [HIGH] CWE-122 CVE-2025-43582: Substance3D - Viewer versions 0.22 and earlier are affected by a Heap-based Buffer Overflow vulnerab Substance3D - Viewer versions 0.22 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user, scope unchanged. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-43583 [MEDIUM] CWE-476 CVE-2025-43583: Substance3D - Viewer versions 0.22 and earlier are affected by a NULL Pointer Dereference vulnerabil Substance3D - Viewer versions 0.22 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires user interaction in that a victim must open a malicious fil

CVE-2025-43584 [MEDIUM] CWE-125 CVE-2025-43584: Substance3D - Viewer versions 0.22 and earlier are affected by an out-of-bounds read vulnerability t Substance3D - Viewer versions 0.22 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.