Substance3D - Painter versions 10.1.1 and earlier are...
High severity
Unreviewed
Published
Dec 11, 2024
to the GitHub Advisory Database
•
Updated Dec 13, 2024
Description
Published by the National Vulnerability Database
Dec 10, 2024
Published to the GitHub Advisory Database
Dec 11, 2024
Last updated
Dec 13, 2024
Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References