CVE-2025-27185
published 2025-04-08CVE-2025-27185: After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | after_effects | < 24.6.5 | 24.6.5 |
| adobe | after_effects | <= 24.6.4 | — |
| adobe | after_effects | >= 25.0 < 25.2 | 25.2 |