CVE-2026-34642
published 2026-05-12CVE-2026-34642: After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | after_effects | < 25.6.5 | 25.6.5 |
| adobe | after_effects | <= 25.6.4 | — |
| adobe | after_effects | — | — |