CVE-2025-27165
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
08/07/2025
Last modified:
10/07/2025
Description
Substance3D - Stager versions 3.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM