CVE-2025-54240
published 2025-09-09CVE-2025-54240: After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure, potentially disclosing…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure, potentially disclosing sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | after_effects | < 24.6.8 | 24.6.8 |
| adobe | after_effects | <= 24.6.7 | — |
| adobe | after_effects | >= 25.0 < 25.4 | 25.4 |