CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-21155

Substance3D - Stager versions 3.1.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.8%

CVSS Severity

CVSS v3 Score 5.5

References

https://helpx.adobe.com/security/products/substance3d_stager/apsb25-09.html

Products affected by CVE-2025-21155

Adobe » Substance 3d Stager » Version: N/A

cpe:2.3:a:adobe:substance_3d_stager:-
Adobe » Substance 3d Stager » Version: 2.0.1

cpe:2.3:a:adobe:substance_3d_stager:2.0.1
Adobe » Substance 3d Stager » Version: 2.1.3

cpe:2.3:a:adobe:substance_3d_stager:2.1.3
Adobe » Substance 3d Stager » Version: 3.0.2

cpe:2.3:a:adobe:substance_3d_stager:3.0.2
Adobe » Substance 3d Stager » Version: 3.0.3

cpe:2.3:a:adobe:substance_3d_stager:3.0.3
Adobe » Substance 3d Stager » Version: 3.0.4

cpe:2.3:a:adobe:substance_3d_stager:3.0.4
Adobe » Substance 3d Stager » Version: 3.1.0

cpe:2.3:a:adobe:substance_3d_stager:3.1.0
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-21155

Products

Pricing

Contact Us