CVE-2025-30329

CWE-476NULL Pointer Dereference3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 72.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Animate
Timeline
PublishedMay 13

Description

Animate versions 24.0.8, 23.0.11 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption of service. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDadobe/animate23.0.023.0.12+1
CVEListV5adobe/animate23.0.11

🔴Vulnerability Details

2
GHSA
GHSA-qfj5-rcvf-98cf: Animate versions 242025-05-13
CVEList
Animate | NULL Pointer Dereference (CWE-476)2025-05-13
CVE-2025-30329 (MEDIUM CVSS 5.5) | Animate versions 24.0.8 | cvebase.io