Lucene search
K

496 matches found

Cvelist
Cvelist
added 2026/03/17 6:52 p.m.18 views

CVE-2025-64733

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS0.00268EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/17 6:52 p.m.3 views

CVE-2025-64733

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References2
CVE
CVE
added 2026/03/17 6:52 p.m.9 views

CVE-2025-66000

CVE-2025-66000 affects Canva Affinity (EMF handling). Talos reports an out-of-bounds read in EMF processing, specifically targeting EMR_POLYDRAW in Canva Affinity 3.0.1.3808, by processing a crafted EMF file, enabling an attacker to read arbitrary process memory and potentially disclose sensitive...

7.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/17 6:52 p.m.3 views

CVE-2025-66000

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/17 6:52 p.m.22 views

CVE-2025-66000

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS0.00268EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/17 6:52 p.m.3 views

CVE-2025-66000

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/17 6:52 p.m.4 views

CVE-2025-64301

An out‑of‑bounds write vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out‑of‑bounds write, potentially leading to code execution...

7.8CVSS5.9AI score0.00269EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/17 6:52 p.m.22 views

CVE-2025-64301

An out‑of‑bounds write vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out‑of‑bounds write, potentially leading to code execution...

7.8CVSS0.00269EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/17 6:52 p.m.4 views

CVE-2025-64301

An out‑of‑bounds write vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out‑of‑bounds write, potentially leading to code execution...

7.8CVSS5.9AI score0.00269EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/03/17 6:52 p.m.20 views

CVE-2025-64301

Summary of CVE-2025-64301 (Canva Affinity EMF vulnerability) Talos reports a local‑privilege context vulnerability in Canva Affinity’s EMF file handling that enables an out‑of‑bounds write, potentially allowing arbitrary code execution within affected Canva Affinity processes. The vulnerability i...

7.8CVSS5.9AI score0.00269EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/03/17 6:52 p.m.21 views

CVE-2025-64776

Summary: CVE-2025-64776 is a Canva Affinity EMF handling vulnerability. A specially crafted EMF file can trigger an out-of-bounds read via the EMF processing path, potentially exposing memory contents. Affected product/version: Canva Affinity 3.0.1.3808 (Affinity suite). Root cause (as described)...

7.1CVSS5.8AI score0.00277EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/17 6:52 p.m.22 views

CVE-2025-64776

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS0.00277EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/17 6:52 p.m.3 views

CVE-2025-64776

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00277EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/17 6:52 p.m.21 views

CVE-2025-64735

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS0.00268EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/17 6:52 p.m.3 views

CVE-2025-64735

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/17 6:52 p.m.2 views

CVE-2025-64735

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References2
CVE
CVE
added 2026/03/17 6:52 p.m.17 views

CVE-2025-64735

CVE-2025-64735 affects Canva Affinity. Talos reports an out-of-bounds read in EMF processing (EMR_STRETCHBLT) where offBmiSrc is not validated, leading to a read of memory outside the mapped bitmap when a crafted EMF is opened. Affected product/version per Talos: Canva Affinity 3.0.1.3808. The vu...

7.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/17 6:52 p.m.3 views

CVE-2025-66633

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/17 6:52 p.m.2 views

CVE-2025-66633

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/03/17 6:52 p.m.10 views

CVE-2025-66633

Canva Affinity (EMF support) CVE-2025-66633 is a real out-of-bounds read vulnerability in the EMF file processing path. Talos details show the issue in the EMR_STRETCHBLT handling, where the code computes remaining_bitmap_data as BitmapBufferSize minus headerSize and offBmiSrc, but does not valid...

7.1CVSS5.8AI score0.00268EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder