CVE-2026-21288
published 2026-01-13CVE-2026-21288: Illustrator versions 29.8.3, 30.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
Illustrator versions 29.8.3, 30.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | illustrator | <= 30.0 | — |
| adobe | illustrator | — | — |
| adobe | illustrator | >= 29.0 < 29.8.4 | 29.8.4 |