Adobe After Effects vulnerabilities

CVE-2025-27182 [HIGH] CWE-787 CVE-2025-27182: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-27183 [HIGH] CWE-787 CVE-2025-27183: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-27185 [MEDIUM] CWE-476 CVE-2025-27185: After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerabi After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must ope

CVE-2025-27187 [MEDIUM] CWE-125 CVE-2025-27187: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-27186 [MEDIUM] CWE-125 CVE-2025-27186: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-27184 [MEDIUM] CWE-125 CVE-2025-27184: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-27204 [MEDIUM] CWE-125 CVE-2025-27204: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-49537 [HIGH] CWE-121 CVE-2024-49537: After Effects versions 24.6.2, 25.0.1 and earlier are affected by a Stack-based Buffer Overflow vuln After Effects versions 24.6.2, 25.0.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47443 [HIGH] CWE-787 CVE-2024-47443: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47442 [HIGH] CWE-787 CVE-2024-47442: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47441 [HIGH] CWE-787 CVE-2024-47441: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47445 [MEDIUM] CWE-125 CVE-2024-47445: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47446 [MEDIUM] CWE-125 CVE-2024-47446: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-47444 [MEDIUM] CWE-125 CVE-2024-47444: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-39381 [HIGH] CWE-787 CVE-2024-39381: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-41859 [HIGH] CWE-787 CVE-2024-41859: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-39380 [HIGH] CWE-122 CVE-2024-39380: After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnera After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-41867 [MEDIUM] CWE-125 CVE-2024-41867: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-39382 [MEDIUM] CWE-125 CVE-2024-39382: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-20737 [MEDIUM] CWE-125 CVE-2024-20737: After Effects versions 24.1, 23.6.2 and earlier are affected by an out-of-bounds read vulnerability After Effects versions 24.1, 23.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.