PT-2026-26900 · Pixologic · Twistedbrush Pro Studio
Alejandra Sánchez
·
Published
2026-03-21
·
Updated
2026-03-21
·
CVE-2019-25555
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TwistedBrush Pro Studio version 24.06
Description
The software contains a denial of service issue in the Script Recorder component. Local attackers can cause the application to crash by providing an excessively large buffer. Specifically, attackers can paste a malicious string containing 500,000 characters into the Description field within the Script Recorder dialog, leading to an application crash.
Recommendations
Avoid pasting excessively large strings, specifically those containing 500,000 characters or more, into the Description field of the Script Recorder dialog.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Twistedbrush Pro Studio