Out-of-Bounds Read Vulnerability in Format Plugins by Adobe
CVE-2025-61844

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: Format Plugins
Vendor: CVE Published:; 11 November 2025

What is CVE-2025-61844?

Adobe Format Plugins versions 1.1.1 and earlier are susceptible to an Out-of-bounds Read vulnerability that may lead to memory exposure. An attacker can exploit this issue to disclose sensitive information that is stored in memory. Successful exploitation necessitates user interaction, as the victim must open specially crafted malicious files to trigger the vulnerability, making it imperative for users to remain vigilant when handling unknown or suspicious files.

Affected Version(s)

Format Plugins 0 <= 1.1.1

References

https://helpx.adobe.com/security/products/formatplugins/a...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Oct 1, 2025

JSON