After Effects versions 25.2, 24.6.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Metrics
Affected Vendors & Products
References
History
Tue, 08 Jul 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 08 Jul 2025 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | After Effects versions 25.2, 24.6.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |
Title | After Effects | NULL Pointer Dereference (CWE-476) | |
Weaknesses | CWE-476 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: adobe
Published: 2025-07-08T16:25:45.651Z
Updated: 2025-07-08T20:36:13.506Z
Reserved: 2025-04-30T20:47:55.001Z
Link: CVE-2025-47109

Updated: 2025-07-08T20:36:09.975Z

Status : Awaiting Analysis
Published: 2025-07-08T17:15:36.510
Modified: 2025-07-10T13:19:18.800
Link: CVE-2025-47109

No data.