496 matches found
CVE-2025-66503
Canva Affinity CVE-2025-66503 is an out-of-bounds read vulnerability in the EMF handling code. Talos documents describe it as an EMF file processing issue (EMR_POLYBEZIERTO) that can read memory outside the intended bounds, potentially causing disclosure of sensitive information. Affected product...
CVE-2025-66042
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-66042
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-66042
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-66042
CVE-2025-66042 affects Canva Affinity. Talos details reveal an out-of-bounds read in the EMF processing path of Canva Affinity, triggered by specially crafted EMF files. Affected product/version example: Canva Affinity 3.0.1.3808. The vulnerability arises during EMR_EXTSELECTCLIPRGN region handli...
CVE-2025-65119
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-65119
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-65119
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-65119
Summary (verified): CVE-2025-65119 affects Canva Affinity. Talos reports an out-of-bounds read in the EMF processing of Canva Affinity’s EMF files, caused by the EMR_POLYGON record where a large Count leads to an out-of-bounds read when iterating aPoints. Affected version identified by Talos: Can...
CVE-2025-62403
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-62403
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-62403
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-62403
CANVA AFFINITY CVE-2025-62403 is an EMF parsing vulnerability in the EMF file handling (EMR_EXTTEXTOUTA) that may trigger an out-of-bounds read. Talos reports that the fault is due to an offDx offset using intercharacter spacing past the recordSize, enabling an attacker to read arbitrary memory w...
CVE-2026-20726
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2026-20726
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2026-20726
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2026-20726
CVE-2026-20726 affects Canva Affinity: Talos confirms an EMF processing vulnerability (EMF POLYBEZIERTO16) causing an out-of-bounds read that can disclose memory contents. Canva Affinity 3.0.1.3808 is listed as vulnerable; exploitation details are documented in TALOS-2025-2324/TALOS blog TALOSBLO...
CVE-2026-22882
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2026-22882
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2026-22882
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...