Painter (< 12.0.2) — CraftedSignal Threat Feedhttps://feed.craftedsignal.io/products/painter--12.0.2/Trending threats, MITRE ATT&CK coverage, and detection metadata. Fed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 12 May 2026 18:27:59 +0000CVE-2026-34675: Adobe Substance3D Painter Out-of-Bounds Write Vulnerabilityhttps://feed.craftedsignal.io/briefs/2026-05-cve-2026-34675-substance3d/Tue, 12 May 2026 18:27:59 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-05-cve-2026-34675-substance3d/Adobe Substance3D Painter versions 12.0.2 and earlier are vulnerable to an out-of-bounds write vulnerability (CVE-2026-34675) that could lead to arbitrary code execution if a user opens a malicious file.Adobe Substance3D Painter versions 12.0.2 and earlier are susceptible to an out-of-bounds write vulnerability, identified as CVE-2026-34675. This vulnerability can be exploited if a user opens a specially crafted malicious file. Successful exploitation could allow an attacker to execute arbitrary code within the context of the current user, potentially leading to system compromise. The vulnerability requires user interaction, as the victim must open a malicious file for the exploit to be triggered. This issue poses a significant risk to organizations and individuals using the affected versions of Substance3D Painter, as it could lead to data breaches, malware infections, or complete system takeover.

Attack Chain

  1. The attacker crafts a malicious Substance3D Painter file.
  2. The attacker delivers the malicious file to the victim. This could be achieved through various methods, such as email, file sharing platforms, or compromised websites.
  3. The victim, unaware of the malicious nature of the file, opens it using a vulnerable version of Adobe Substance3D Painter (<= 12.0.2).
  4. The vulnerable software attempts to process the crafted file.
  5. Due to the out-of-bounds write vulnerability (CVE-2026-34675), the software writes data to an unintended memory location.
  6. The attacker-controlled data overwrites critical program data or code.
  7. The attacker gains the ability to execute arbitrary code within the context of the user running Substance3D Painter.
  8. The attacker can then perform actions such as installing malware, stealing sensitive data, or gaining persistent access to the system.

Impact

Successful exploitation of CVE-2026-34675 can lead to arbitrary code execution on the victim’s machine, within the context of the user running the vulnerable application. This could allow an attacker to steal sensitive information, install malware, or gain persistent access to the system. Given the potential for arbitrary code execution, this vulnerability poses a significant risk.

Recommendation

  • Upgrade to a patched version of Adobe Substance3D Painter greater than 12.0.2 to remediate CVE-2026-34675.
  • Deploy the Sigma rule “Detect Suspicious File Opens in Substance3D Painter” to identify attempts to exploit this vulnerability by monitoring file opening events.
  • Implement user awareness training to educate users about the risks of opening files from untrusted sources.
]]>highadvisorycveout-of-bounds writecode execution