How severe is CVE-2026-21307?

CVE-2026-21307 has a CVSS v3 score of 7.8 (HIGH).

CVE-2026-21307

Name: substance_3d_designer
Author: adobe

7.8HIGH

Substance3D - Designer versions 15.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o

Published: 1/13/2026Updated: 1/14/2026

Description

Substance3D - Designer versions 15.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

AI AnalysisPowered by AI

Affected Products

adobesubstance_3d_designer

References

https://helpx.adobe.com/security/products/substance3d_designer/apsb26-13.html
Vendor Advisory