- Description
- Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
- Source
- psirt@adobe.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- psirt@adobe.com
- CWE-125
- Hype score
- Not currently trending
CVE-2024-53005 Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker c… https://t.co/qXjN8f17jX
@CVEnew
11 Dec 2024
110 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53005 Sensitive Memory Disclosure via Out-of-Bounds Read in Substance3D Modeler Substance3D - Modeler versions 1.14.1 and earlier have an out-of-bounds read vulnerability. This can lead to sensitive memo... https://t.co/6gaHrEn1tx
@VulmonFeeds
11 Dec 2024
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:adobe:substance_3d_modeler:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EBD3683C-D9A5-45EC-BF8F-CE9720A9F64B",
"versionEndIncluding": "1.14.1"
}
],
"operator": "OR"
}
]
}
]