CVE-2025-66342

Publication date

2026-03-17 18:52:52

Family

talos

State

PUBLISHED

Description

A type confusion vulnerability exists in the EMF functionality of Canva Affinity. A specially crafted EMF file can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution.