Out-of-Bounds Write Vulnerability in Adobe Illustrator
CVE-2026-48336

7.8HIGH

What is CVE-2026-48336?

Adobe Illustrator is susceptible to an out-of-bounds write vulnerability impacting the application's ability to properly manage memory. This security flaw can be exploited by an attacker through the delivery of a specially crafted file. Once the victim opens the malicious file, it may lead to arbitrary code execution within the user context, potentially allowing an attacker to manipulate or access sensitive information. User interaction is a prerequisite for exploitation, emphasizing the importance of caution when handling unknown files.

Affected Version(s)

Illustrator Desktop 2025 0 <= 29.8.7

Illustrator Desktop 2025 0 <= 29.8.7

Illustrator Desktop 2026 0 <= 30.5

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.