Out-of-Bounds Write Vulnerability in Adobe Illustrator
CVE-2026-48337

7.8HIGH

What is CVE-2026-48337?

Adobe Illustrator is exposed to an out-of-bounds write vulnerability that allows the execution of arbitrary code when a malicious file is opened by an unsuspecting user. Successful exploitation of this vulnerability depends on user interaction, making it critical for users to be cautious about opening files from untrusted sources. It is advisable to apply the latest patches provided by Adobe to mitigate the risk associated with this security flaw.

Affected Version(s)

Illustrator Desktop 2025 0 <= 29.8.7

Illustrator Desktop 2025 0 <= 29.8.7

Illustrator Desktop 2026 0 <= 30.5

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.