Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-14 | CVE-2025-21136 | Out-of-bounds Write vulnerability in Adobe Substance 3D Designer Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-01-14 | CVE-2025-21137 | Out-of-bounds Write vulnerability in Adobe Substance 3D Designer Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-01-14 | CVE-2025-21138 | Out-of-bounds Write vulnerability in Adobe Substance 3D Designer Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-01-14 | CVE-2025-21139 | Out-of-bounds Write vulnerability in Adobe Substance 3D Designer Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-01-14 | CVE-2024-48854 | Off-by-one Error vulnerability in Blackberry QNX Software Development Platform 7.0/7.1/8.0 Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec. | 7.5 |
| 2025-01-14 | CVE-2024-48855 | Out-of-bounds Read vulnerability in Blackberry QNX Software Development Platform 7.0/7.1/8.0 Out-of-bounds read in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec. | 7.5 |
| 2025-01-14 | CVE-2024-48857 | NULL Pointer Dereference vulnerability in Blackberry QNX Software Development Platform 7.0/7.1/8.0 NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec. | 7.5 |
| 2025-01-14 | CVE-2025-21122 | Integer Underflow (Wrap or Wraparound) vulnerability in Adobe Photoshop Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2025-01-14 | CVE-2025-21127 | Uncontrolled Search Path Element vulnerability in Adobe Photoshop Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could lead to arbitrary code execution. | 7.8 |
| 2025-01-14 | CVE-2025-21128 | Out-of-bounds Write vulnerability in Adobe Substance 3D Stager Substance3D - Stager versions 3.0.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |