Lucene search
+L
AdobeDng Software Development Kit*

9 matches found

CVE
CVE
added 2026/02/10 6:32 p.m.49 views

CVE-2026-21353

The CVE-2026-21353 issue affects DNG SDK versions 1.7.1 ≤ 2410 and earlier. The root cause is an Integer Overflow or Wraparound (CWE-190) in the SDK, enabling arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. ...

7.8CVSS6.3AI score0.00184EPSS
CVE
CVE
added 2026/02/10 6:32 p.m.38 views

CVE-2026-21352

The CVE-2026-21352 entry concerns Adobe DNG SDK: versions 1.7.1 build 2410 and earlier are affected by an out-of-bounds write (CWE-787) that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction, specifically the victim opening a malicious...

7.8CVSS6.3AI score0.00157EPSS
CVE
CVE
added 2026/06/16 4:32 p.m.31 views

CVE-2026-47964

Affected software : DNG SDK (version 1.7.1 2536 and earlier). Vulnerability : Heap-based buffer overflow (CWE-122) in the DNG SDK, potentially allowing arbitrary code execution in the context of the current user. Impact : Arbitrary code execution with high impact (confidentiality/ integrity/ avai...

7.8CVSS6AI score0.00199EPSS
CVE
CVE
added 2026/06/16 4:32 p.m.28 views

CVE-2026-47927

CVE-2026-47927 concerns the DNG SDK, where versions 1.7.1 2536 and earlier are affected by an out-of-bounds read (CWE-125). The vulnerability could lead to disclosure of sensitive memory. Exploitation requires user interaction: a victim must open a malicious file. The CVSS info indicates a local ...

5.5CVSS5.2AI score0.00165EPSS
CVE
CVE
added 2026/02/10 6:32 p.m.20 views

CVE-2026-21355

The CVE-2026-21355 entry concerns the DNG SDK, affected in versions 1.7.1 2410 and earlier. It describes an out-of-bounds read that could expose memory contents, with exploitation requiring a user to open a malicious file. The impact is memory exposure, not code execution per the provided text. C...

5.5CVSS5.4AI score0.00152EPSS
CVE
CVE
added 2026/06/16 4:32 p.m.20 views

CVE-2026-47963

The CVE-2026-47963 entry concerns DNG SDK versions 1.7.1 2536 and earlier, which are affected by an out-of-bounds read (CWE-125). The vulnerability can disclose sensitive memory and requires user interaction: a victim must open a malicious file. This is the explicit impact and attack condition de...

5.5CVSS5.2AI score0.00165EPSS
CVE
CVE
added 2026/02/10 6:32 p.m.19 views

CVE-2026-21354

The CVE-2026-21354 entry concerns the DNG SDK, affected in versions 1.7.1 2410 and earlier. The issue is an Integer Overflow or Wraparound that can lead to application denial-of-service. Exploitation requires user interaction: a victim must open a malicious file, potentially crashing or making th...

5.5CVSS5.6AI score0.00139EPSS
CVE
CVE
added 2026/06/16 4:32 p.m.17 views

CVE-2026-47934

CVE-2026-47934 affects DNG SDK versions 1.7.1 2536 and earlier, with an out-of-bounds read (CWE-125) that can disclose sensitive memory. The vulnerability arises in the SDK’s handling that leads to memory disclosure. Exploitation requires user interaction: a victim must open a malicious file. Con...

5.5CVSS5.2AI score0.00165EPSS
CVE
CVE
added 2026/07/06 7:45 p.m.14 views

CVE-2026-48267

The CVE-2026-48267 entry concerns the DNG SDK prior to or equal to version 1.7.1 build 2536, where a NULL Pointer Dereference could cause an application crash and denial-of-service. The vulnerability requires user interaction: a victim must open a malicious file. The root cause is a NULL pointer ...

5.5CVSS6AI score0.00139EPSS