PT-2026-24366 · Adobe · Dng Sdk
Michele Spagnuolo
·
Published
2026-03-10
·
Updated
2026-03-11
·
CVE-2026-27281
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
DNG SDK versions 1.7.1 2471 and earlier
Description
The DNG SDK is affected by an Integer Overflow or Wraparound issue that may result in application denial-of-service. An attacker could exploit this to cause the application to crash or become unresponsive. Exploitation requires user interaction, specifically a victim opening a malicious file.
Recommendations
Update to a newer version of DNG SDK than 1.7.1 2471.
Fix
DoS
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dng Sdk