-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 # KSA-179547: Vulnerabilities discovered in KeyShot Studio * Publication Date: 2026-03-23 * Last Update: 2026-03-24 * Current Version: 1.1 * CVSS v3.1 Base Score: 7.8 Summary ======= Trend Micro's Zero Day Initiative (ZDI) discovered and disclosed 1 vulnerability pertaining to KeyShot software: * ZDI-CAN-23709 More information at: https://www.zerodayinitiative.com/advisories/published/ KeyShot has mitigated for the vulnerabilities in version 2026.1. Affected Products and Remediation ================================= * KeyShot Studio * Affected versions: All versions before 2026.1 * Remediation: Upgrade to version 2026.1 or later Product Description =================== KeyShot Studio is a photo-realistic real-time rendering program with a scene structure that can be setup and manipulated for rendering. It allows import of various CAD formats into its scene structure. Vulnerability Classification ============================ Classification of the vulnerabilities has been done by using CVSS 3.1 (https://www.first.org/cvss/) with additional CWE classification (https://cwe.mitre.org/). * Vulnerability ZDI-CAN-23709 This vulnerability allows remote attackers to execute arbitrary code on affected installations of KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of USDC files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. * [CVE-2025-2532](https://www.cve.org/CVERecord?id=CVE-2025-2532) * CVSS v3.1 base score: 7.8 * CVSS vector: [CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H&version=3.1) * [CWE-416: Use after free](https://cwe.mitre.org/data/definitions/416.html) Acknowledgments =============== KeyShot thanks the following parties for their efforts: * Zero Day Initiative for coordinated disclosure Additional Information ====================== Further details about KeyShot CSIRT and advisories can be found at: https://www.keyshot.com/csirt/ History Data ============ v1.0 (2026-03-23): Publication date v1.1 (2026-03-24): Minor formatting and phrashing changes Terms of Use ============ KeyShot security advisories are subject to the terms and conditions contained in the license terms or other applicable agreement previously made with KeyShot. To the extent applicable to information, software or documentation made available in or by a KeyShot security advisory, the "Terms of Use" of KeyShot global website shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use. -----BEGIN PGP SIGNATURE----- iIsEARYKADMWIQSUYkigHSki6BNu3V5c8VK80mvrmgUCacJr3RUcc2VjdXJpdHlA a2V5c2hvdC5jb20ACgkQXPFSvNJr65osdQEAwkGn0UmzH1HDnxHqto3iAMvh0lYK WTzOAi37JaRzugQA/jjaR9/RysOElOtEN2tLDr/5miMCetz22wWHxKdLU5wA =6LQ+ -----END PGP SIGNATURE-----