CVE-2025-54279

📊 7.8 HIGH⚡ 0.0%🎯 0 exploits

📅 Published Oct 15, 2025

📋 Status: Analyzed

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

4 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	adobe	animate	≥ 23.0.0 ∧ < 23.0.15	Vulnerable	cpe:2.3:a:adobe:animate::::::::
📱App	adobe	animate	≥ 24.0.0 ∧ < 24.0.12	Vulnerable	cpe:2.3:a:adobe:animate::::::::
💻OS	apple	macos	All versions	Not Vulnerable	cpe:2.3:o:apple:macos:-:::::::*
💻OS	microsoft	windows	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows:-:::::::*

📱

adobe / animate

Application

Vulnerable

Version: ≥ 23.0.0 ∧ < 23.0.15

CPE:

cpe:2.3:a:adobe:animate:*:*:*:*:*:*:*:*

📱

adobe / animate

Application

Vulnerable

Version: ≥ 24.0.0 ∧ < 24.0.12

CPE:

cpe:2.3:a:adobe:animate:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

💻

microsoft / windows

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Metrics

7.8 HIGHCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

NONE

User Interaction:

REQUIRED

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

7.8 (HIGH)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)9.6th percentile

Last updated: Oct 30, 2025

Exploitation probability within 30 days

Published Date

Oct 15, 2025 (17 days ago)

Last Modified

Oct 17, 2025 (14 days ago)

Security Weaknesses1

CWE-416

References2

NVDgeneral