CVE-2025-2720

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 25, 2025

Updated: Mar 27, 2025

CWE ID 416

Summary

CVE-2025-2720 was identified as a potential cybersecurity vulnerability, but further investigation revealed that it was actually a false positive. The candidate number was withdrawn by its Cybersecurity and Infrastructure Security Agency (CISA) after it was determined that there was no actual security issue. The initial concern stemmed from an issue with a buffer call, where the length of the data ("len") did not match the number of valid bytes pointed to by "data" in the code. However, the code maintainer clarified that this call was invalid and the documentation was updated accordingly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Adobe Animate

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners