漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Substance3D - Painter | Untrusted Search Path (CWE-426)
Vulnerability Description
Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. The problem extends to any type of critical resource that the application trusts. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
不可信的搜索路径
Vulnerability Title
Adobe Substance 3D Painter 代码问题漏洞
Vulnerability Description
Adobe Substance 3D Painter是美国奥多比(Adobe)公司的一个3D纹理处理应用程序。 Adobe Substance 3D Painter 10.1.0版本及之前版本存在代码问题漏洞,该漏洞源于包含一个不受信任的搜索路径漏洞。攻击者利用该漏洞可以执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A