PT-2025-28786 · Adobe · Illustrator
Published
2025-07-08
·
Updated
2025-07-09
·
CVE-2025-49524
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Illustrator versions 28.7.6 and earlier
Illustrator version 29.5.1
Description:
Illustrator is susceptible to a NULL Pointer Dereference issue that may result in application denial-of-service. An attacker could exploit this issue to crash the application, leading to a disruption in service. Exploitation requires user interaction, specifically, a victim must open a malicious file.
Recommendations:
Illustrator versions prior to 28.7.6 should be updated.
Illustrator version 29.5.1 should be updated.
Fix
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Illustrator