Vulnerability Details CVE-2025-27173
Substance3D - Modeler versions 1.15.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.7%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2025-27173
-
cpe:2.3:a:adobe:substance_3d_modeler:-
-
cpe:2.3:a:adobe:substance_3d_modeler:0.14.1
-
cpe:2.3:a:adobe:substance_3d_modeler:0.17.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.1.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.10.50
-
cpe:2.3:a:adobe:substance_3d_modeler:1.11.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.11.50
-
cpe:2.3:a:adobe:substance_3d_modeler:1.12.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.12.50
-
cpe:2.3:a:adobe:substance_3d_modeler:1.13.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.14.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.14.1
-
cpe:2.3:a:adobe:substance_3d_modeler:1.14.50
-
cpe:2.3:a:adobe:substance_3d_modeler:1.15.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.2.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.3.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.4.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.5.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.6.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.7.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.8.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.8.50
-
cpe:2.3:a:adobe:substance_3d_modeler:1.9.0
-
cpe:2.3:a:adobe:substance_3d_modeler:1.9.50