CVE-2016-4167

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.8CRITICAL

EPSS

6.5%

top 8.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe DNG Software Development KIT

Timeline

PublishedJun 16

Latest updateMay 17

Description

Adobe DNG Software Development Kit (SDK) before 1.4 2016 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDadobe/dng_software_development_kit1.4.2012

🔴Vulnerability Details

GHSA

GHSA-685r-4j59-fpc5: Adobe DNG Software Development Kit (SDK) before 1↗2022-05-17

▶

CVEList

CVE-2016-4167: Adobe DNG Software Development Kit (SDK) before 1↗2016-06-16

▶