CVE-2024-49537

Name of the Vulnerable Software and Affected Versions: After Effects versions 24.6.2, 25.0.1 and earlier

Description: The issue is related to a stack-based buffer overflow that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious file. This allows an attacker to potentially cause a denial of service.

Recommendations: For versions 24.6.2, 25.0.1 and earlier, update to a version that is not affected by this issue to prevent arbitrary code execution. As a temporary workaround, consider avoiding the use of potentially malicious files until a patch is available. Restrict user interaction with untrusted files to minimize the risk of exploitation.