Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
Substance3D Painter versions 11.1.2 and earlier may crash when opening a malicious file
CVE-2026-27214
Summary
Substance3D Painter versions 11.1.2 and earlier are at risk of crashing if a user opens a specially crafted file. This could disrupt work and services. Update to a patched version to resolve the issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| adobe | substance_3d_painter | <= 11.1.3 | – |
Original title
Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerabi...
Original description
Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd CVSS3.1
5.5
Vulnerability type
CWE-476
NULL Pointer Dereference
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026