VYPR
Medium severity5.5NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026

CVE-2025-49524

CVE-2025-49524

Description

Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing a disruption in service. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • Adobe Inc./Illustratorllm-fuzzy2 versions
    <=28.7.6, <=29.5.1+ 1 more
    • (no CPE)range: <=28.7.6, <=29.5.1
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.