Aggregates CVE and security vulnerability intelligence across all canva-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk memory corruption and related problems; some flaws may lead to vendor impact application crash, affecting vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-22882 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2026-20726 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66633 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66617 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66503 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66342 | A type confusion vulnerability exists in the EMF functionality of Canva Affinity. A specially crafted EMF file can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. | [email protected] | 7.8 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66042 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-66000 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-65119 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-64776 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-64735 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-64733 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-64301 | An out‑of‑bounds write vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out‑of‑bounds write, potentially leading to code execution. | [email protected] | 7.8 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-62500 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-62403 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-61979 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-61952 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-58427 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |
| CVE-2025-47873 | An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information. | [email protected] | 6.1 | 0.01% | 2026-03-17 | 2026-03-19 |