Out-of-Bounds Read Vulnerability in Adobe Format Plugins Affecting Multiple Versions
CVE-2025-61839

7.8HIGH

Key Information:

Vendor: Adobe
Status: Format Plugins
Vendor: CVE Published:; 11 November 2025

What is CVE-2025-61839?

Adobe Format Plugins versions 1.1.1 and earlier are susceptible to an out-of-bounds read vulnerability. This issue arises when the software processes a specially crafted file, potentially leading to unauthorized memory access. If exploited, an attacker could execute arbitrary code within the context of the current user. It is essential to note that for this vulnerability to be exploited, the victim must first open the malicious file.

Affected Version(s)

Format Plugins 0 <= 1.1.1

References

https://helpx.adobe.com/security/products/formatplugins/a...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Oct 1, 2025

JSON