PT-2026-40419 · Adobe · After Effects
Published
2026-05-12
·
Updated
2026-05-12
·
CVE-2026-34690
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
After Effects versions 25.6.4 and earlier
After Effects version 26.0
Description
A stack-based buffer overflow occurs when a program writes more data to a buffer located on the stack than the buffer is allocated to hold, potentially overwriting adjacent memory. This issue could result in arbitrary code execution in the context of the current user and requires user interaction, specifically the opening of a malicious file.
Recommendations
Update After Effects versions 25.6.4 and earlier to a patched version.
Update After Effects version 26.0 to a patched version.
Fix
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
After Effects