Adobe Dng Software Development Kit vulnerabilities

CVE-2026-27280 [HIGH] CWE-787 CVE-2026-27280: DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that co DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-27281 [MEDIUM] CWE-190 CVE-2026-27281: DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerabil DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user interaction in that a victim must open a malicious fi

CVE-2026-21352 [HIGH] CWE-787 CVE-2026-21352: DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds write vulnerability that co DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-21353 [HIGH] CWE-190 CVE-2026-21353: DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerabil DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2026-21354 [MEDIUM] CWE-190 CVE-2026-21354: DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerabil DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user interaction in that a victim must open a malicious fi

CVE-2026-21355 [MEDIUM] CWE-125 CVE-2026-21355: DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds read vulnerability that cou DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-64784 [HIGH] CWE-122 CVE-2025-64784: DNG SDK versions 1.7.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that c DNG SDK versions 1.7.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead to memory exposure or application denial of service. An attacker could leverage this vulnerability to disclose sensitive memory information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-64783 [HIGH] CWE-190 CVE-2025-64783: DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability t DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-64893 [HIGH] CWE-125 CVE-2025-64893: DNG SDK versions 1.7.0 and earlier are affected by an Out-of-bounds Read vulnerability that could le DNG SDK versions 1.7.0 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure or application denial of service. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2025-64894 [MEDIUM] CWE-190 CVE-2025-64894: DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability t DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this issue to cause the application to crash or become unresponsive. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2020-9627 [HIGH] CWE-125 CVE-2020-9627: Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnera Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVE-2020-9625 [HIGH] CWE-125 CVE-2020-9625: Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnera Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVE-2020-9628 [HIGH] CWE-125 CVE-2020-9628: Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnera Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

CVE-2016-4167 [CRITICAL] CWE-119 CVE-2016-4167: Adobe DNG Software Development Kit (SDK) before 1.4 2016 allows attackers to execute arbitrary code Adobe DNG Software Development Kit (SDK) before 1.4 2016 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.