VYPR

Modeler

by Substance3D

CVEs (3)

  • CVE-2025-27181HigMar 11, 2025
    risk 0.51cvss 7.8epss 0.00

    Substance3D - Modeler versions 1.15.0 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

  • CVE-2024-53005MedDec 10, 2024
    risk 0.36cvss 5.5epss 0.00

    Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user…

  • CVE-2024-52833MedDec 10, 2024
    risk 0.36cvss 5.5epss 0.00

    Substance3D - Modeler versions 1.14.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition.…