CVE-2026-21342

Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.6 and earlier

Description The software contains a flaw that allows for writing data outside the intended memory boundaries. Successful exploitation of this issue could lead to arbitrary code execution with the privileges of the current user. User interaction is required for exploitation, specifically, a user must open a specially crafted malicious file.

Recommendations Update Substance3D - Stager to a version later than 3.1.6.