Adobe After Effects is a digital visual effects, motion graphics, and compositing application developed by Adobe Systems and used in the post-production process of film making, video games and television production. It allows users to animate, alter and composite media in 3D space with various built-in tools and third party plug-ins, as well as individual attention to variables like parallax and user-adjustable angle of observation. It is mainly used for creating motion graphics and visual effects.

Adobe After Effects

After Effects versions 25.6 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-21351	HIGH	7.8	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Feb 10, 2026
CVE-2026-21330	HIGH	7.8	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Feb 10, 2026
CVE-2026-21329	HIGH	7.8	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Feb 10, 2026
CVE-2026-21328	HIGH	7.8	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Feb 10, 2026
CVE-2026-21350	MEDIUM	5.5	Adobe After Effects	cpe:2.3:a:adobe:after_effects	No	Yes	Feb 10, 2026

CVE-2026-21350:
Adobe After Effects vulnerability analysis and mitigation

5.5

Related Adobe After Effects vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-21350: Adobe After Effects vulnerability analysis and mitigation