CVE-2025-47873 – An out-of-bounds read vulnerability in Canva Af... (How to Fix)

Q: What is the severity of CVE-2025-47873?

CVE-2025-47873 has a CVSS score of 6.1 (MEDIUM). An out-of-bounds read vulnerability in Canva Affinity's EMF file processing allows attackers to read memory beyond allocated buffers via specially crafted EMF files. This could lead to sensitive information disclosure. Users of Canva Affinity software are affected.

📋 TL;DR

An out-of-bounds read vulnerability in Canva Affinity's EMF file processing allows attackers to read memory beyond allocated buffers via specially crafted EMF files. This could lead to sensitive information disclosure. Users of Canva Affinity software are affected.

💻 Affected Systems

Products:

Canva Affinity

Versions: Specific versions not specified in provided references

Operating Systems: Windows, macOS, Linux

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all platforms where Canva Affinity runs. Exact version ranges not specified in provided references.

📦 What is this software?

Affinity by Canva

View all CVEs affecting Affinity →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Memory disclosure could expose sensitive data like credentials, encryption keys, or other application data in memory, potentially enabling further attacks.

🟠

Likely Case

Information disclosure of random memory contents, which could include fragments of sensitive data or application state.

🟢

If Mitigated

Limited impact with proper sandboxing and memory protection controls in place.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires user interaction to open malicious EMF file. No public exploit code identified in provided references.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in provided references

Vendor Advisory: https://trust.canva.com/?tcuUid=1f728b0d-17f3-4c9c-97e9-6662b769eb62

Restart Required: Yes

Instructions:

1. Check Canva Affinity for updates. 2. Install latest version. 3. Restart application. 4. Verify patch installation.

🔧 Temporary Workarounds

Disable EMF file processing

all

Prevent Canva Affinity from processing EMF files

File type restrictions

all

Block EMF files at email/web gateways

🧯 If You Can't Patch

Restrict user permissions to limit impact of information disclosure
Implement application sandboxing/containerization

🔍 How to Verify

Check if Vulnerable:

Check Canva Affinity version against vendor advisory

Check Version:

Check within Canva Affinity application settings or about dialog

Verify Fix Applied:

Verify Canva Affinity is updated to latest version and test with known malicious EMF file

📡 Detection & Monitoring

Log Indicators:

Application crashes when processing EMF files
Unusual memory access patterns

Network Indicators:

Downloads of EMF files from untrusted sources

SIEM Query:

Process execution of Canva Affinity followed by file access to *.emf files

📊 Metadata

CVE ID: CVE-2025-47873

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CWE: CWE-125

Published: March 17, 2026

Last Updated: March 19, 2026

🔗 References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2316 Third Party Advisory,Exploit
https://trust.canva.com/?tcuUid=1f728b0d-17f3-4c9c-97e9-6662b769eb62 Vendor Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2316 Third Party Advisory,Exploit

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-47873, you might also want to check these: