2 matches found
CVE-2025-61979
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
CVE-2025-58427
CVE-2025-58427 affects Canva Affinity for EMF processing. Talos reports an out-of-bounds read in the EMF handling within the EMR_EXTTEXTOUTW record, triggered by specially crafted EMF files. The vulnerability stems from reading an intercharacter spacing array using an offset (offDx) that can exce...