CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-64301

An out‑of‑bounds write vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out‑of‑bounds write, potentially leading to code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.5%

CVSS Severity

CVSS v3 Score 7.8

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2310
https://trust.canva.com/?tcuUid=1f728b0d-17f3-4c9c-97e9-6662b769eb62
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2310

Products affected by CVE-2025-64301

Canva » Affinity » Version: N/A

cpe:2.3:a:canva:affinity:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64301

Products

Pricing

Contact Us