CVE-2024-52833

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 476

Summary

CVE-2024-52833 is a NULL Pointer Dereference vulnerability affecting Substance3D Modeler versions 1.14.1 and prior. This issue could allow an attacker to cause a denial-of-service condition by crashing the application upon opening a malicious file. The vulnerability arises due to improper handling of memory, resulting in a NULL pointer dereference. Successful exploitation necessitates user interaction, making it a potential threat to unsuspecting users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share