CVE-2026-48275

Summary

Illustrator is affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed.

Affected Software

VendorProductVersion RangeStatus
AdobeIllustrator Desktop 20260 <= 30.5affected
AdobeIllustrator Desktop 202630.6unaffected
AdobeIllustrator Desktop 20250 <= 29.8.7affected
AdobeIllustrator Desktop 202529.8.9unaffected

Weaknesses

  • CWE-426: Untrusted Search Path (CWE-426)

References