CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-24440

Substance3D - Sampler versions 4.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.0%

CVSS Severity

CVSS v3 Score 7.8

References

https://helpx.adobe.com/security/products/substance3d-sampler/apsb25-16.html

Products affected by CVE-2025-24440

Adobe » Substance 3d Sampler » Version: N/A

cpe:2.3:a:adobe:substance_3d_sampler:-
Adobe » Substance 3d Sampler » Version: 4.2.1

cpe:2.3:a:adobe:substance_3d_sampler:4.2.1
Adobe » Substance 3d Sampler » Version: 4.5.1

cpe:2.3:a:adobe:substance_3d_sampler:4.5.1
Adobe » Substance 3d Sampler » Version: 4.5.2

cpe:2.3:a:adobe:substance_3d_sampler:4.5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-24440

Products

Pricing

Contact Us