How severe is CVE-2026-21305?

CVE-2026-21305 has a CVSS v3 score of 7.8 (HIGH).

CVE-2026-21305

Name: substance_3d_painter
Author: adobe

7.8HIGH

Substance3D - Painter versions 11.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of

Published: 1/13/2026Updated: 1/14/2026

Description

Substance3D - Painter versions 11.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

AI AnalysisPowered by AI

Affected Products

adobesubstance_3d_painter

References

https://helpx.adobe.com/security/products/substance3d_painter/apsb26-10.html
Vendor Advisory