CNNVD-202512-1147 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1147
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Adobe DNG SDK是美国奥多比(Adobe)公司的一款提供读取和写入DNG文件功能的软件开发工具包。 Adobe DNG SDK 1.7.0版本及之前版本存在缓冲区错误漏洞,该漏洞源于越界读取,可能导致内存泄露或应用程序拒绝服务。
Description (English)
Adobe DNG SDK is a software development toolkit for reading and writing DNG files from Adobe USA. Version 1.7.0 and previous versions of Adobe DNG SDK contain an error loophole in the buffer zone, which originates from cross-border reading and may lead to memory leakage or application denial of services.
Hazard Level
Medium
Vulnerability Type
缓冲区错误
Affected Vendor
奥多比
Published
2025-12-09
Last Modified
2026-02-24
References
https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html
Patch
https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html
Share on: