CVE-2024-52996
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 122
CWE ID 787
Summary
CVE-2024-52996 is a Heap-based Buffer Overflow vulnerability affecting Substance3D's Sampler in versions 4.5.1 and earlier. This issue can lead to arbitrary code execution, granting an attacker the same privileges as the current user. Exploitation requires the victim to open a maliciously crafted file. Users are advised to update to a patched version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Adobe