102 matches found
CVE-2022-30664
Adobe Animate version 22.0.5 and earlier is affected by an out-of-bounds write vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Affected platforms include the Adobe Animate product...
CVE-2024-20795
Adobe Animate versions 23.0.4, 24.0.1 and earlier are affected by CVE-2024-20795, an Integer Overflow or Wraparound vulnerability that could lead to arbitrary code execution in the current user context. Exploitation requires user interaction (the victim must open a malicious file). Remediation pe...
CVE-2024-30282
CVE-2024-30282 affects Adobe Animate versions 24.0.2, 23.0.5 and earlier, due to an out-of-bounds write that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Affected products include Animate 23.x an...
CVE-2021-42524
Adobe Animate (version 21.0.9 and earlier) is affected by an out-of-bounds write vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious BMP file. The issue is documented as CVE-2021-42524. ...
CVE-2021-21071
Adobe Animate is affected by a memory corruption vulnerability tracked as CVE-2021-21071 affecting version 21.0.3 and earlier. The issue allows an unauthenticated attacker to execute arbitrary code in the context of the current user, with exploitation requiring the user to open a malicious file. ...
CVE-2023-29321
CVE-2023-29321 affects Adobe Animate, where a use-after-free condition in FLA/file handling could allow arbitrary code execution in the context of the current user. Affected versions are 22.0.9 and earlier, and 23.0.1 and earlier. Exploitation requires the user to open a malicious file, implying ...
CVE-2024-20764
CVE-2024-20764 affects Adobe Animate versions 24.0, 23.0.3 and earlier, due to an out-of-bounds read that can disclose sensitive memory and potentially bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Multiple sources corroborate the issue and its impact. Fixes...
CVE-2021-21073
Adobe Animate (Windows/macOS) versions 21.0.3 and earlier are affected by an Out-of-bounds Read vulnerability. An unauthenticated attacker could disclose sensitive data in the context of the current user, and exploitation requires the victim to open a malicious file. Impact is information disclos...
CVE-2021-42267
Adobe Animate 21.0.9 and earlier is affected by a memory corruption vulnerability caused by insecure handling of a malicious FLA file, potentially allowing arbitrary code execution in the user’s context. Exploitation requires user interaction. The issue is addressed in the APSB21-105 advisory, wh...
CVE-2024-20794
Adobe Animate is affected by a NULL pointer dereference in WAV file parsing (CVE-2024-20794) that can crash the application and cause a denial of service. Vulnerable versions include 23.0.4, 24.0.1 and earlier. Exploitation requires user interaction (victim opens a malicious file). Remediation is...
CVE-2024-20761
Adobe Animate is affected by CVE-2024-20761, an out-of-bounds write in the BMP/file parsing path that can allow arbitrary code execution in the context of the current user. Affected versions are 24.0, 23.0.3 and earlier. Exploitation requires user interaction (victim must open a malicious file). ...
CVE-2021-40733
CVE-2021-40733 affects Adobe Animate 21.0.9 and earlier. It involves a memory corruption vulnerability caused by insecure handling of a malicious PSD file, potentially allowing arbitrary code execution in the current user context. Exploitation requires user interaction. The issue is addressed by ...
CVE-2024-52990
Adobe Animate versions 23.0.8, 24.0.5 and earlier are affected by a Buffer Underwrite (CWE-124) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opening a malicious file). Remediation per advisories is to apply the offici...
CVE-2021-21077
CVE-2021-21077 refers to a heap-based buffer overflow in Adobe Animate, affecting 21.0.3 and earlier. An unauthenticated user could run arbitrary code in the current user context, with exploitation requiring the user to open a malicious file. The issue is addressed in APSB21-21 by updates that fi...
CVE-2024-20762
Adobe Animate versions 24.0, 23.0.3 and earlier are affected by an out-of-bounds read vulnerability that could disclose sensitive memory and bypass mitigations like ASLR. Exploitation requires a user to open a malicious file. Remediation is provided in APSB24-19; update to Animate 24.0.1 or 23.0....
CVE-2024-30293
CVE-2024-30293 (Adobe Animate) affects Animate versions 24.0.2, 23.0.5 and earlier. It is a stack-based buffer overflow vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a malicious file). CVSSv...
CVE-2020-9747
CVE-2020-9747 concerns Adobe Animate 20.5 and earlier, where parsing a crafted .fla file can trigger a double-free vulnerability leading to arbitrary code execution in the current user’s context. The issue requires user interaction to exploit and is categorized as a high-severity vulnerability. T...
CVE-2021-28621
Adobe Animate 21.x (including 21.0.6 and earlier) is affected by CVE-2021-28621, an Out-of-bounds Read in FLA file parsing that can lead to arbitrary code execution in the current user context when a user opens a malicious file. The issue requires user interaction. Affected platforms include Wind...
CVE-2023-22246
Adobe Animate CVE-2023-22246 affects versions 22.0.8 and earlier and 23.0.0 and earlier, with a Use-After-Free in memory management that could lead to arbitrary code execution when a user opens a malicious file. Exploitation requires user interaction. Adobe released APSB23-15; fixes are to versio...
CVE-2024-20763
Adobe Animate is affected by CVE-2024-20763: an out-of-bounds read in GIF/file parsing for version 24.0, 23.0.3 and earlier that can disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). Patches are available: update to non‑affected builds 23.0.4...
CVE-2025-21135
Summary: CVE-2025-21135 affects Adobe Animate versions 24.0.6, 23.0.9 and earlier. It is an Integer Underflow (Wrap/wraparound) that could lead to arbitrary code execution in the current user context . Exploitation requires user interaction via opening a malicious file. Remediation: Adobe has rel...
CVE-2022-38412
CVE-2022-38412 – Adobe Animate : Affected products are Adobe Animate desktop versions 21.0.11 (and earlier) and 22.0.7 (and earlier). The issue is an out-of-bounds read during parsing of a crafted file (SVG/XML parsing context per CVE listing), potentially enabling arbitrary code execution in the...
CVE-2016-7866
CVE-2016-7866 affects Adobe Animate 15.2.1.95 and earlier, on Windows/macOS, via a memory corruption vulnerability caused by buffer overflow when creating .FLA files with long class names. Successful exploitation could lead to arbitrary code execution. Public references (Exploit-DB) indicate an e...
CVE-2020-9750
CVE-2020-9750 is an out-of-bounds read vulnerability in Adobe Animate 20.5 and earlier that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a crafted .fla file in Animate. Connected advisories confirm this CVE is ...
CVE-2021-28622
Adobe Animate 21.x before 21.0.7 is affected by an Out-of-bounds Write in BMP/file parsing that can allow arbitrary code execution in the current user context when a victim opens a malicious file. Exploitation requires user interaction. The issue is addressed by APSB21-50; update to 21.0.7 or lat...
CVE-2024-52985
Adobe Animate (Windows) versions 23.0.8 and 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability (CVE-2024-52985) that could allow arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file. The issue ...
CVE-2024-52989
Adobe Animate is affected by an Integer Underflow (Wrap or Wraparound) in versions 23.0.8, 24.0.5 and earlier, which could lead to arbitrary code execution in the context of the current user after opening a malicious file. Exploitation requires user interaction. A fix is available: update to Anim...
CVE-2023-44325
Adobe Animate versions 23.0.2 and earlier are affected by an out-of-bounds read that can disclose memory and bypass ASLR. Attack requires a user to open a malicious file; exploitation is local. Remediation: apply updates from APSB23-61 (Animate 23.0.3 or later, and 24.0+ per advisories).
CVE-2024-20797
CVE-2024-20797 affects Adobe Animate: versions 23.0.4, 24.0.1 and earlier suffer an out-of-bounds read while parsing a crafted file, potentially enabling code execution in the current user context. Exploitation requires user interaction (victim must open a malicious file). The issue is part of a ...
CVE-2024-52984
CVE-2024-52984 affects Adobe Animate versions 23.0.8, 24.0.5 and earlier, due to an Integer Underflow (Wrap or Wraparound) vulnerability that could enable arbitrary code execution in the current user context. Exploitation requires a user to open a malicious file. Public sources consistently descr...
CVE-2024-52987
Affected software: Adobe Animate. Vulnerability: Integer Underflow (Wrap or Wraparound) in Animate 23.0.8, 24.0.5 and earlier that could enable arbitrary code execution in the context of the current user, requiring the user to open a malicious file. Root cause / impact: Underflow could lead to co...
CVE-2021-21075
CVE-2021-21075 affects Adobe Animate version 21.0.3 and earlier; it is an Out-of-bounds Read vulnerability that could disclose information in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction). Remediation per APSB21-21 is to update to 21...
CVE-2021-28618
Adobe Animate 21.0.6 and earlier are affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could disclose sensitive memory information in the context of the current user, and known exploits require that a victim opens a malicious file. ...
CVE-2021-28619
Adobe Animate 21.0.6 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file, potentially exposing memory contents to an unauthenticated attacker. Exploitation requires user interaction (victim opens a malicious file). The issue affects Windows and m...
CVE-2021-42270
Summary (CVE-2021-42270) Adobe Animate 21.0.9 and earlier are affected by an out-of-bounds write vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires a user action: opening a malicious BMP file. Connected sources confirm this as a multi...
CVE-2021-21076
CVE-2021-21076 affects Adobe Animate 21.0.3 and earlier with an Out-of-bounds Read leading to potential information disclosure. Exploitation requires user interaction (victim opens a malicious file). Connected sources (APSB21-21) indicate a remediation/update is available; Adobe lists this as a p...
CVE-2021-28630
Adobe Animate 21.x prior to 21.0.7 is affected by multiple Out-of-bounds/Read vulnerabilities due to parsing of specially crafted files, with CVE-2021-28630 (and related CVEs) enabling information disclosure and other impacts. The primary CVE-2021-28630 describes an out-of-bounds read that can di...
CVE-2020-9749
CVE-2020-9749 is an out-of-bounds read vulnerability in Adobe Animate 20.5 and earlier that could allow arbitrary code execution in the context of the current user. Exploitation requires a user to open a crafted .fla file in Animate (user interaction). The connected advisories note and Nessus ent...
CVE-2021-42266
Summary: CVE-2021-42266 affects Adobe Animate 21.0.9 and earlier, via memory corruption when processing a malicious FLA file. This could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must open a crafted file). The vulnerabi...
CVE-2024-30298
Adobe Animate (Windows/macOS) versions 24.0.2, 23.0.5 and earlier are affected by an out-of-bounds read in SWF parsing that could disclose memory contents. Exploitation requires user interaction (victim opens a malicious file) and could bypass ASLR. Affected product versions align with APSB24-36;...
CVE-2025-27199
Adobe Animate (versions 24.0.7, 23.0.10 and earlier) is affected by a Heap-based Buffer Overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. Connected sources confirm the issue and refer...
CVE-2025-27201
CVE-2025-27201 affects Adobe Animate versions 24.0.7, 23.0.10 and earlier and is an out-of-bounds read that can disclose memory and bypass ASLR; exploitation requires a user to open a malicious file. Remediation per connected sources: update to fixed builds (e.g., 24.0.8 or 23.0.11) as part of th...
CVE-2021-21074
Adobe Animate vulnerability CVE-2021-21074 affects Adobe Animate 21.0.3 and earlier. The issue is an Out-of-bounds Read that could disclose sensitive information in the context of the current user. Exploitation requires user interaction—victims must open a malicious file. Remediation is reference...
CVE-2021-42271
CVE-2021-42271 affects Adobe Animate 21.0.9 and earlier. It covers an out-of-bounds write that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious BMP file. The issue is documented in Adobe’s APSB21-105 ...
CVE-2021-42272
Adobe Animate is affected by CVE-2021-42272: an out-of-bounds write in parsing a GIF file in versions 21.0.9 and earlier, allowing arbitrary code execution in the context of the current user and requiring user interaction (victim opens a malicious GIF). A patch is available via APSB21-105; remedi...
CVE-2024-20796
Adobe Animate (Windows/macOS) versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read that can disclose memory contents. Exploitation requires user interaction (victim opens a malicious file). The issue is listed as CVE-2024-20796. Adobe APSB24-26 and related advisories indicate...
CVE-2024-52986
CVE-2024-52986 affects Adobe Animate versions 23.0.8, 24.0.5 and earlier, due to an Integer Underflow (Wrap or Wraparound) that could enable arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file (user interaction). The issue is refere...
CVE-2023-22236
Summary: CVE-2023-22236 affects Adobe Animate. The vulnerability is a heap-based buffer overflow in Animate versions 22.0.8 or earlier and 23.0.0 or earlier, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction (the victim must o...
CVE-2024-30295
CVE-2024-30295 affects Adobe Animate versions 24.0.2, 23.0.5 and earlier due to a NULL Pointer Dereference, enabling arbitrary code execution in the current user context. Exploitation requires user interaction (opening a malicious file). Mitigation: apply APSB24-36 updates—Animate 23.0.6 and 24.0...
CVE-2024-47410
Adobe Animate is vulnerable to a Stack-based Buffer Overflow (CVE-2024-47410) affecting versions 23.0.7, 24.0.4 and earlier. The underlying issue is a stack-based buffer overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: ...