CVE-2025-54205
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-12

Last updated on: 2025-08-14

Assigner: Adobe Systems Incorporated

Description
Substance3D - Sampler versions 5.0.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-12
Last Modified
2025-08-14
Generated
2026-05-27
AI Q&A
2025-08-12
EPSS Evaluated
2026-05-25
NVD
CVE-2025-54205
EUVD
EUVD-2025-24502
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
adobe substance_3d_sampler to 5.1.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is an out-of-bounds read in Substance3D - Sampler versions 5.0.3 and earlier. It occurs when a user opens a malicious file, which can cause the software to read memory outside of its intended boundaries, potentially exposing sensitive information stored in memory.


How can this vulnerability impact me? :

The vulnerability can lead to disclosure of sensitive memory, meaning that an attacker could gain access to sensitive information from the affected system. Exploitation requires user interaction, specifically opening a malicious file, which could result in unauthorized exposure of confidential data.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart