Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
Adobe Illustrator versions 29.8.4 and earlier: Sensitive info exposed via malicious files
CVE-2026-27270
Summary
Adobe Illustrator versions 29.8.4 and 30.1 and earlier contain a security weakness that allows an attacker to access sensitive information if you open a malicious file. This means your confidential data could be compromised if you're not careful. Update to a patched version of Illustrator to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| adobe | illustrator | > 29.0 , <= 29.8.5 | – |
| adobe | illustrator | > 30.0 , <= 30.2 | – |
Original title
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensiti...
Original description
Illustrator versions 29.8.4, 30.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd CVSS3.1
5.5
Vulnerability type
CWE-125
Out-of-bounds Read
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026