Platform External Dng Sdk vulnerabilities
8 known vulnerabilities affecting platform/external_dng_sdk.
Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN8
Vulnerabilities
Page 1 of 1
CVE-2026-0049UNKNOWN≥ 16-qpr2-next:0, < 16-qpr2-next:2026-04-01≥ 15:0, < 15:2026-04-01+3 more2026-04-01
CVE-2026-0049 CVE-2026-0049: In onHeaderDecoded of LocalImageResolver
In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-64784UNKNOWN≥ 16-qpr2-next:0, < 16-qpr2-next:2026-03-01≥ 15:0, < 15:2026-03-01+3 more2026-03-01
CVE-2025-64784 CVE-2025-64784: In multiple locations, there is a possible way to access unexpected data due to multiple causes
In multiple locations, there is a possible way to access unexpected data due to multiple causes. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-64783UNKNOWN≥ 16-qpr2-next:0, < 16-qpr2-next:2026-03-01≥ 15:0, < 15:2026-03-01+3 more2026-03-01
CVE-2025-64783 CVE-2025-64783: In multiple locations, there is a possible way to access unexpected data due to multiple causes
In multiple locations, there is a possible way to access unexpected data due to multiple causes. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-64893UNKNOWN≥ 16-qpr2-next:0, < 16-qpr2-next:2026-03-01≥ 15:0, < 15:2026-03-01+3 more2026-03-01
CVE-2025-64893 CVE-2025-64893: In multiple locations, there is a possible way to access unexpected data due to multiple causes
In multiple locations, there is a possible way to access unexpected data due to multiple causes. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-48622UNKNOWN≥ 15:0, < 15:2025-12-01≥ 16:0, < 16:2025-12-01+2 more2025-12-01
CVE-2025-48622 CVE-2025-48622: In ProcessArea of dng_misc_opcodes
In ProcessArea of dng_misc_opcodes.cpp, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-22423UNKNOWN≥ 15-next:0, < 15-next:2025-04-01≥ 15:0, < 15:2025-04-01+2 more2025-04-01
CVE-2025-22423 CVE-2025-22423: In ParseTag of dng_ifd
In ParseTag of dng_ifd.cpp, there is a possible way to crash the image renderer due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-0081UNKNOWN≥ 15-next:0, < 15-next:2025-03-01≥ 12:0, < 12:2025-03-01+4 more2025-03-01
CVE-2025-0081 CVE-2025-0081: In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg
In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2020-9589UNKNOWN≥ 8.0:0, < 8.0:2020-07-01≥ 8.1:0, < 8.1:2020-07-01+2 more2020-07-01
CVE-2020-9589 CVE-2020-9589: In DecodeImage of dng_lossless_jpeg
In DecodeImage of dng_lossless_jpeg.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
osv