Adobe Substance3D Painter vulnerabilities

CVE-2024-47434 [HIGH] CWE-787 CVE-2024-47434: Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerabili Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47439 [MEDIUM] CWE-476 CVE-2024-47439: Substance3D - Painter versions 10.1.0 and earlier are affected by a NULL Pointer Dereference vulnera Substance3D - Painter versions 10.1.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must o

CVE-2024-47437 [MEDIUM] CWE-125 CVE-2024-47437: Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerabilit Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47436 [MEDIUM] CWE-125 CVE-2024-47436: Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerabilit Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47435 [MEDIUM] CWE-125 CVE-2024-47435: Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerabilit Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47440 [MEDIUM] CWE-125 CVE-2024-47440: Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerabilit Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47438 [MEDIUM] CWE-123 CVE-2024-47438: Substance3D - Painter versions 10.1.0 and earlier are affected by a Write-what-where Condition vulne Substance3D - Painter versions 10.1.0 and earlier are affected by a Write-what-where Condition vulnerability that could lead to a memory leak. This vulnerability allows an attacker to write a controlled value at a controlled memory location, which could result in the disclosure of sensitive memory content. Exploitation of this issue requires user in

CVE-2024-49522 [HIGH] CWE-787 CVE-2024-49522: Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerabili Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20787 [MEDIUM] CWE-125 CVE-2024-20787: Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds read vulnerabilit Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-30274 [HIGH] CWE-787 CVE-2024-30274: Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-30307 [HIGH] CWE-787 CVE-2024-30307: Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-30308 [MEDIUM] CWE-125 CVE-2024-30308: Substance3D - Painter versions 9.1.2 and earlier Answer: are affected by an out-of-bounds read vulne Substance3D - Painter versions 9.1.2 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-30309 [MEDIUM] CWE-125 CVE-2024-30309: Substance3D - Painter versions 9.1.2 and earlier Answer: are affected by an out-of-bounds read vulne Substance3D - Painter versions 9.1.2 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20740 [HIGH] CWE-787 CVE-2024-20740: Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20723 [HIGH] CWE-120 CVE-2024-20723: Substance3D - Painter versions 9.1.1 and earlier are affected by a Buffer Overflow vulnerability tha Substance3D - Painter versions 9.1.1 and earlier are affected by a Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20742 [HIGH] CWE-125 CVE-2024-20742: Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read vulnerability Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interact

CVE-2024-20741 [HIGH] CWE-123 CVE-2024-20741: Substance3D - Painter versions 9.1.1 and earlier are affected by a Write-what-where Condition vulner Substance3D - Painter versions 9.1.1 and earlier are affected by a Write-what-where Condition vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20744 [HIGH] CWE-787 CVE-2024-20744: Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20743 [HIGH] CWE-787 CVE-2024-20743: Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerabilit Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20722 [MEDIUM] CWE-125 CVE-2024-20722: Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read vulnerability Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.