VYPR
High severity7.8NVD Advisory· Published May 12, 2026· Updated May 13, 2026

CVE-2026-34643

CVE-2026-34643

Description

After Effects versions 26.0, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2
  • cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*range: <25.6.5
    • cpe:2.3:a:adobe:after_effects:26.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.