Adobe After Effects vulnerabilities
125 known vulnerabilities affecting adobe/after_effects.
Total CVEs
125
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH84MEDIUM28LOW12
Vulnerabilities
Page 2 of 7
CVE-2025-54239MEDIUMCVSS 5.5fixed in 24.6.8≥ 25.0, < 25.4+1 more2025-09-09
CVE-2025-54239 [MEDIUM] CWE-125 CVE-2025-54239: After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure, potentially disclosing sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-54241MEDIUMCVSS 5.5fixed in 24.6.8≥ 25.0, < 25.4+1 more2025-09-09
CVE-2025-54241 [MEDIUM] CWE-125 CVE-2025-54241: After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.3, 24.6.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure, potentially disclosing sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-47109MEDIUMCVSS 5.5fixed in 24.6.7≥ 25.0, < 25.3+1 more2025-07-08
CVE-2025-47109 [MEDIUM] CWE-476 CVE-2025-47109: After Effects versions 25.2, 24.6.6 and earlier are affected by a NULL Pointer Dereference vulnerabi
After Effects versions 25.2, 24.6.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious f
nvd
CVE-2025-43587MEDIUMCVSS 5.5fixed in 24.6.7≥ 25.0, < 25.3+1 more2025-07-08
CVE-2025-43587 [MEDIUM] CWE-125 CVE-2025-43587: After Effects versions 25.2, 24.6.6 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.2, 24.6.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27182HIGHCVSS 7.8fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27182 [HIGH] CWE-787 CVE-2025-27182: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27183HIGHCVSS 7.8fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27183 [HIGH] CWE-787 CVE-2025-27183: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27187MEDIUMCVSS 5.5fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27187 [MEDIUM] CWE-125 CVE-2025-27187: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27186MEDIUMCVSS 5.5fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27186 [MEDIUM] CWE-125 CVE-2025-27186: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27184MEDIUMCVSS 5.5fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27184 [MEDIUM] CWE-125 CVE-2025-27184: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27204MEDIUMCVSS 5.5fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27204 [MEDIUM] CWE-125 CVE-2025-27204: After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability
After Effects versions 25.1, 24.6.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2025-27185MEDIUMCVSS 5.5fixed in 24.6.5≥ 25.0, < 25.2+1 more2025-04-08
CVE-2025-27185 [MEDIUM] CWE-476 CVE-2025-27185: After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerabi
After Effects versions 25.1, 24.6.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must ope
nvd
CVE-2024-49537HIGHCVSS 7.8fixed in 24.6.3≥ 25.0, < 25.1+1 more2024-12-10
CVE-2024-49537 [HIGH] CWE-121 CVE-2024-49537: After Effects versions 24.6.2, 25.0.1 and earlier are affected by a Stack-based Buffer Overflow vuln
After Effects versions 24.6.2, 25.0.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47443HIGHCVSS 7.8≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47443 [HIGH] CWE-787 CVE-2024-47443: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47441HIGHCVSS 7.8≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47441 [HIGH] CWE-787 CVE-2024-47441: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47442HIGHCVSS 7.8≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47442 [HIGH] CWE-787 CVE-2024-47442: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerabili
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47445MEDIUMCVSS 5.5≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47445 [MEDIUM] CWE-125 CVE-2024-47445: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47444MEDIUMCVSS 5.5≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47444 [MEDIUM] CWE-125 CVE-2024-47444: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-47446MEDIUMCVSS 5.5≤ 23.6.9≥ 24.0, < 24.6.32024-11-12
CVE-2024-47446 [MEDIUM] CWE-125 CVE-2024-47446: After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerabilit
After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-39381HIGHCVSS 7.8fixed in 23.6.9≥ 24.0, < 24.6+1 more2024-09-13
CVE-2024-39381 [HIGH] CWE-787 CVE-2024-39381: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2024-41859HIGHCVSS 7.8fixed in 23.6.9≥ 24.0, < 24.6+1 more2024-09-13
CVE-2024-41859 [HIGH] CWE-787 CVE-2024-41859: After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd