CVE-2024-47459

Name of the Vulnerable Software and Affected Versions: Substance3D - Sampler versions 4.5 and earlier

Description: The issue is related to a null pointer dereference vulnerability. Exploitation of this vulnerability could lead to an application denial-of-service (DoS) condition, allowing an attacker to crash the application. This requires user interaction, where a victim must open a malicious file. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations: For Substance3D - Sampler versions 4.5 and earlier, upgrade to a version later than 4.5 to resolve the issue. As a temporary workaround, consider avoiding the opening of suspicious or malicious files with the affected software until a patch is applied. Restricting access to potentially vulnerable components or modules within the software may also help minimize the risk of exploitation.