CVE-2025-49571

Name of the Vulnerable Software and Affected Versions: Substance3D - Modeler versions 1.22.0 and earlier

Description: Substance3D - Modeler is affected by an uncontrolled search path element issue that may lead to arbitrary code execution with current user privileges. An attacker could manipulate the application’s search path to execute a malicious program when the application attempts to locate critical resources. Exploitation of this issue does not require user interaction.

Recommendations: Update Substance3D - Modeler to a version later than 1.22.0.