Adobe Substance 3d Viewer
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Adobe Substance 3d Viewer.
By the Year
In 2025 there have been 10 vulnerabilities in Adobe Substance 3d Viewer with an average score of 7.1 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 10 | 7.11 |
It may take a day or so for new Substance 3d Viewer vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Adobe Substance 3d Viewer Security Vulnerabilities
Substance3D Viewer 0.25.2 & < Stack-Based Buffer Overflow (CVE-2025-54274)
CVE-2025-54274
7.8 - High
- October 14, 2025
Substance3D - Viewer versions 0.25.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Stack Overflow
Substance3D Viewer 0.25.2 and earlier: OOB Write arbitrary code exec
CVE-2025-54273
7.8 - High
- October 14, 2025
Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Substance3D Viewer <=0.25.2 OOB Write DoS
CVE-2025-54275
5.5 - Medium
- October 14, 2025
Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could lead to application denial-of-service. An attacker could leverage this vulnerability to crash the application or make it unavailable. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Out-of-Bounds Write in Substance3D Viewer 0.25.2 => Arbitrary Code Exec
CVE-2025-54280
7.8 - High
- October 14, 2025
Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Substance3D Viewer OOB Write (<0.25.1) – Arbitrary Code Exec
CVE-2025-54243
7.8 - High
- September 09, 2025
Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Substance3D Viewer 0.25 OOB Write
CVE-2025-49569
7.8 - High
- August 12, 2025
Substance3D - Viewer versions 0.25 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Memory Corruption
Substance3D Viewer 0.25 Heap Overflow
CVE-2025-49560
7.8 - High
- August 12, 2025
Substance3D - Viewer versions 0.25 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Heap-based Buffer Overflow
Substance3D Viewer <=0.22 OOB Read: Sensitive Memory Disclosure
CVE-2025-43584
5.5 - Medium
- July 08, 2025
Substance3D - Viewer versions 0.22 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Out-of-bounds Read
Substance3D Viewer <=0.22: NULL Ptr Derefl causing DoS
CVE-2025-43583
5.5 - Medium
- July 08, 2025
Substance3D - Viewer versions 0.22 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
NULL Pointer Dereference
Substance3D Viewer 0.22 Heap BOverflow CVE-2025-43582
CVE-2025-43582
7.8 - High
- July 08, 2025
Substance3D - Viewer versions 0.22 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user, scope unchanged. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Heap-based Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Adobe Substance 3d Viewer or by Adobe? Click the Watch button to subscribe.
