Out-of-Bounds Read Vulnerability in Adobe Dimension
CVE-2025-47135

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: Dimension
Vendor: CVE Published:; 8 July 2025

What is CVE-2025-47135?

Adobe Dimension versions 4.1.2 and earlier are subject to an out-of-bounds read vulnerability that could allow unauthorized access to sensitive memory contents. This vulnerability can potentially enable attackers to circumvent security defenses, such as Address Space Layout Randomization (ASLR). Exploitation necessitates user interactions, meaning that the victim must engage with a malicious file crafted to trigger the attack, highlighting the importance of user vigilance and security practices.

Affected Version(s)

Dimension 0 <= 4.1.2

References

https://helpx.adobe.com/security/products/dimension/apsb2...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 8, 2025
Vulnerability Reserved
Apr 30, 2025