Adobe Substance 3D Stager is a software tool used for creating 3D scenes and rendering realistic images. It enables users to assemble models, materials, and lighting in a realistic environment, control your camera settings, and render photorealistic imagery and animations. It incorporates physically accurate lighting and materials and allows designs to be viewed from any angle.

Adobe Substance 3D Stager

Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-27309	HIGH	7.8	Adobe Substance 3D Stager	cpe:2.3:a:adobe:substance_3d_stager	No	Yes	Mar 27, 2026
CVE-2026-27279	HIGH	7.8	Adobe Substance 3D Stager	cpe:2.3:a:adobe:substance_3d_stager	No	Yes	Mar 10, 2026
CVE-2026-27277	HIGH	7.8	Adobe Substance 3D Stager	cpe:2.3:a:adobe:substance_3d_stager	No	Yes	Mar 10, 2026
CVE-2026-27276	HIGH	7.8	Adobe Substance 3D Stager	cpe:2.3:a:adobe:substance_3d_stager	No	Yes	Mar 10, 2026
CVE-2026-27275	HIGH	7.8	Adobe Substance 3D Stager	cpe:2.3:a:adobe:substance_3d_stager	No	Yes	Mar 10, 2026

CVE-2026-27274:
Adobe Substance 3D Stager vulnerability analysis and mitigation

7.8

Related Adobe Substance 3D Stager vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-27274: Adobe Substance 3D Stager vulnerability analysis and mitigation