CVE-2025-65119 – An out-of-bounds read vulnerability in Canva Af... (How to Fix)

Q: What is the severity of CVE-2025-65119?

CVE-2025-65119 has a CVSS score of 6.1 (MEDIUM). An out-of-bounds read vulnerability in Canva Affinity's EMF file processing allows attackers to read memory beyond allocated buffers via specially crafted EMF files. This could lead to sensitive information disclosure. Users of Affinity software who process untrusted EMF files are affected.

📋 TL;DR

An out-of-bounds read vulnerability in Canva Affinity's EMF file processing allows attackers to read memory beyond allocated buffers via specially crafted EMF files. This could lead to sensitive information disclosure. Users of Affinity software who process untrusted EMF files are affected.

💻 Affected Systems

Products:

Canva Affinity software with EMF functionality

Versions: Versions prior to patch

Operating Systems: Windows, macOS, Linux

Default Config Vulnerable: ⚠️ Yes

Notes: All configurations that process EMF files are vulnerable

📦 What is this software?

Affinity by Canva

View all CVEs affecting Affinity →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Memory disclosure leading to exposure of sensitive data like credentials, encryption keys, or other application secrets stored in memory

🟠

Likely Case

Application crash or disclosure of non-sensitive memory contents

🟢

If Mitigated

No impact with proper input validation and memory protection controls

🌐 Internet-Facing: MEDIUM - Requires user interaction to open malicious file

🏢 Internal Only: MEDIUM - Same attack vector applies internally

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires user to open malicious EMF file; no authentication bypass needed

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check vendor advisory for specific version

Vendor Advisory: https://trust.canva.com/?tcuUid=1f728b0d-17f3-4c9c-97e9-6662b769eb62

Restart Required: Yes

Instructions:

1. Visit Canva's security advisory page
2. Download and install the latest Affinity update
3. Restart the application

🔧 Temporary Workarounds

Disable EMF file processing

all

Prevent Affinity from processing EMF files

Use file type restrictions

all

Configure system to block EMF files from untrusted sources

🧯 If You Can't Patch

Implement application allowlisting to restrict which applications can open EMF files
Use network segmentation to isolate systems running vulnerable versions

🔍 How to Verify

Check if Vulnerable:

Check Affinity version against vendor advisory; if pre-patch version, vulnerable

Check Version:

Check within Affinity application settings or about dialog

Verify Fix Applied:

Verify Affinity version matches or exceeds patched version in vendor advisory

📡 Detection & Monitoring

Log Indicators:

Application crashes when processing EMF files
Unusual memory access patterns

Network Indicators:

Downloads of EMF files from untrusted sources

SIEM Query:

Search for EMF file extensions in download logs or application crash events

📊 Metadata

CVE ID: CVE-2025-65119

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CWE: CWE-125

Published: March 17, 2026

Last Updated: March 19, 2026

🔗 References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2320 Exploit,Third Party Advisory
https://trust.canva.com/?tcuUid=1f728b0d-17f3-4c9c-97e9-6662b769eb62 Vendor Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2320 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-65119, you might also want to check these: