CNNVD-202509-1137 Information

CNNVD ID

CNNVD-202509-1137

Related CVE

CVE-2025-54260

• CNNVD Published: 2025-09-09

Description (Chinese)

Adobe Substance3D Modeler是美国奥多比（Adobe）公司的一款3D建模软件。 Adobe Substance3D Modeler 1.22.2版本及之前版本存在缓冲区错误漏洞，该漏洞源于解析特制文件时越界读取可能导致在当前用户环境下执行任意代码。

Description (English)

Adobe Substance3D Modeler is a 3D modeling software of Adobe, United States. There is an error loophole in the buffer zone in version 1.22.2 of Adobe Substance3D Modeler and earlier versions, which stems from the fact that cross-border reading of specially created documents may result in the enforcement of any code in the current user environment.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

奥多比

Published

2025-09-09

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-92.html

Patch

https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-92.html