CVE-2023-48639

Summary

CVE-2023-48639 is a newly disclosed vulnerability affecting Adobe Substance 3D Designer versions 13.0.0 and earlier, as well as 13.1.0 and earlier. This issue constitutes an out-of-bounds write vulnerability, implying that data is written beyond the intended memory boundaries, potentially resulting in arbitrary code execution. The exploitation of this flaw requires user interaction, meaning that a victim must open a maliciously crafted file to be vulnerable. Successful exploitation would grant the attacker the same privileges as the current user.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.