Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Metrics
Affected Vendors & Products
References
History
Thu, 10 Jul 2025 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Adobe
Adobe illustrator Apple Apple macos Microsoft Microsoft windows |
|
CPEs | cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Adobe
Adobe illustrator Apple Apple macos Microsoft Microsoft windows |
Wed, 09 Jul 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 08 Jul 2025 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |
Title | Illustrator | Stack-based Buffer Overflow (CWE-121) | |
Weaknesses | CWE-121 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: adobe
Published: 2025-07-08T22:01:09.485Z
Updated: 2025-07-10T03:55:38.152Z
Reserved: 2025-06-06T15:42:09.513Z
Link: CVE-2025-49527

Updated: 2025-07-09T13:30:07.647Z

Status : Analyzed
Published: 2025-07-08T22:15:26.500
Modified: 2025-07-10T17:38:21.650
Link: CVE-2025-49527

No data.