Login Sign Up

CVE-2025-21170

5.5 MEDIUM
Denial of Service

📋 TL;DR

Substance3D Modeler versions 1.15.0 and earlier contain a NULL pointer dereference vulnerability that allows attackers to crash the application by tricking users into opening malicious files. This creates a denial-of-service condition where the software becomes unavailable. Users of affected Substance3D Modeler versions are vulnerable.

💻 Affected Systems

Products:
  • Adobe Substance3D Modeler
Versions: 1.15.0 and earlier
Operating Systems: Windows, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of affected versions are vulnerable by default. No special configuration required for exploitation.

📦 What is this software?

Substance 3d Modeler by Adobe

View all CVEs affecting Substance 3d Modeler →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete application crash leading to denial-of-service, potential data loss if unsaved work is open, and disruption to 3D modeling workflows.

🟠

Likely Case

Application crash when opening malicious files, requiring restart and potential loss of unsaved work.

🟢

If Mitigated

No impact if users avoid opening untrusted files or have patched to version 1.15.1 or later.

🌐 Internet-Facing: LOW - Exploitation requires user interaction with malicious files, not directly network exploitable.
🏢 Internal Only: MEDIUM - Internal users could be targeted with malicious files via email or shared drives, but requires user interaction.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW - Requires creating malicious file and social engineering to get user to open it.

Exploitation requires user interaction (opening malicious file). No authentication bypass needed as users already have file access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.15.1 or later

Vendor Advisory: https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-21.html

Restart Required: Yes

Instructions:

1. Open Substance3D Modeler. 2. Go to Help > Check for Updates. 3. Install available updates. 4. Restart the application.

🔧 Temporary Workarounds

Restrict file opening

all

Only open files from trusted sources and avoid opening unknown .sbs or .sbsar files.

User awareness training

all

Educate users about the risks of opening untrusted files in Substance3D Modeler.

🧯 If You Can't Patch

  • Implement application whitelisting to prevent execution of unauthorized files
  • Use file integrity monitoring to detect suspicious file modifications

🔍 How to Verify

Check if Vulnerable:

Check Substance3D Modeler version in Help > About. If version is 1.15.0 or earlier, system is vulnerable.

Check Version:

Not applicable - check version through application GUI Help > About menu

Verify Fix Applied:

Verify version is 1.15.1 or later in Help > About after applying update.

📡 Detection & Monitoring

Log Indicators:

  • Application crash logs with NULL pointer dereference errors
  • Unexpected application termination events

Network Indicators:

  • No network indicators - local file-based exploit

SIEM Query:

EventID=1000 OR EventID=1001 AND ProcessName="Substance3D Modeler" AND ExceptionCode=0xc0000005

📊 Metadata

CVE ID: CVE-2025-21170
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CWE: CWE-476
EPSS Score: 0.04% exploit probability (10.6th percentile)
Published: March 11, 2025
Last Updated: April 14, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-21170, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)
CVE-2023-47003 9.8

A NULL pointer dereference vulnerability in RedisGraph allows attackers to execute arbitrary code or...

Same vulnerability type (CWE-476)