Adobe After Effects is a digital visual effects, motion graphics, and compositing application developed by Adobe Systems and used in the post-production process of film making, video games and television production. It allows users to animate, alter and composite media in 3D space with various built-in tools and third party plug-ins, as well as individual attention to variables like parallax and user-adjustable angle of observation. It is mainly used for creating motion graphics and visual effects.

Adobe After Effects

Adobe After Effects version 18.2.1 (and earlier) is affected by an out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-54241	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Sep 09, 2025
CVE-2025-54240	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Sep 09, 2025
CVE-2025-54239	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Sep 09, 2025
CVE-2025-47109	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Jul 08, 2025
CVE-2025-43587	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Jul 08, 2025

CVE-2021-35993:
Adobe After Effects vulnerability analysis and mitigation

Overview

Technical details

Impact

Additional resources

7.8

Related Adobe After Effects vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2021-35993: Adobe After Effects vulnerability analysis and mitigation