CVE-2025-66042
Published: 17 March 2026
Summary
CVE-2025-66042 is a medium-severity Out-of-bounds Read (CWE-125) vulnerability in Canva Affinity. Its CVSS base score is 6.1 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 3.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2025-66042 is an out-of-bounds read vulnerability (CWE-125) in the EMF functionality of Canva Affinity software. Published on 2026-03-17, it allows exploitation through a specially crafted EMF file, potentially leading to the disclosure of sensitive information. The vulnerability carries a CVSS v3.1 base score of 6.1 (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L), indicating medium severity with high confidentiality impact.
An attacker with local access can exploit this vulnerability by convincing a user to open a malicious EMF file in Canva Affinity, requiring no privileges but relying on user interaction. Successful exploitation triggers an out-of-bounds read, enabling potential leakage of sensitive memory contents, alongside low-impact availability disruption but no integrity compromise.
Mitigation details are available in advisories from Talos Intelligence (TALOS-2025-2319) and Canva's trust center. Security practitioners should consult these references for patch information, workarounds, or updated versions of Canva Affinity.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-208802
Vulnerability details
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
OOB read in EMF parser enables info disclosure via crafted local file opened by user (T1204.002).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires timely remediation of software flaws, directly addressing the out-of-bounds read vulnerability in Canva Affinity's EMF parsing through patching or updates.
Implements memory protection safeguards such as ASLR and DEP to mitigate out-of-bounds reads that could disclose sensitive memory contents in vulnerable applications.
Mandates validation of information inputs like specially crafted EMF files to prevent parsing errors leading to out-of-bounds reads and information disclosure.