CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49560

Substance3D - Viewer versions 0.25 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-72.html

Products affected by CVE-2025-49560

Adobe » Substance 3d Viewer » Version: 0.18.2

cpe:2.3:a:adobe:substance_3d_viewer:0.18.2
Adobe » Substance 3d Viewer » Version: 0.19.1

cpe:2.3:a:adobe:substance_3d_viewer:0.19.1
Adobe » Substance 3d Viewer » Version: 0.20.0

cpe:2.3:a:adobe:substance_3d_viewer:0.20.0
Adobe » Substance 3d Viewer » Version: 0.20.1

cpe:2.3:a:adobe:substance_3d_viewer:0.20.1
Adobe » Substance 3d Viewer » Version: 0.21.0

cpe:2.3:a:adobe:substance_3d_viewer:0.21.0
Adobe » Substance 3d Viewer » Version: 0.22.0

cpe:2.3:a:adobe:substance_3d_viewer:0.22.0
Adobe » Substance 3d Viewer » Version: 0.23.1

cpe:2.3:a:adobe:substance_3d_viewer:0.23.1
Adobe » Substance 3d Viewer » Version: 0.24.0

cpe:2.3:a:adobe:substance_3d_viewer:0.24.0
Adobe » Substance 3d Viewer » Version: 0.24.1

cpe:2.3:a:adobe:substance_3d_viewer:0.24.1
Adobe » Substance 3d Viewer » Version: 0.25.0

cpe:2.3:a:adobe:substance_3d_viewer:0.25.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49560

Products

Pricing

Contact Us