VYPR
Unrated severityNVD Advisory· Published Feb 15, 2024· Updated Aug 6, 2024

Adobe Substance 3D Paint ICO Parsing Access Violation Write Vulnerability

CVE-2024-20741

Description

Substance3D - Painter versions 9.1.1 and earlier are affected by a Write-what-where Condition vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.