VYPR

Substance3D Viewer

by Adobe Inc.

CVEs (3)

  • CVE-2025-43582HigJul 8, 2025
    risk 0.51cvss 7.8epss 0.00

    Substance3D - Viewer versions 0.22 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user, scope unchanged. Exploitation of this issue requires user interaction in that a victim must…

  • CVE-2025-43584MedJul 8, 2025
    risk 0.36cvss 5.5epss 0.00

    Substance3D - Viewer versions 0.22 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

  • CVE-2025-43583MedJul 8, 2025
    risk 0.36cvss 5.5epss 0.00

    Substance3D - Viewer versions 0.22 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this…