CNNVD-202512-1148 Information

CNNVD ID

CNNVD-202512-1148

Related CVE

CVE-2025-64784

• CNNVD Published: 2025-12-09

Description (Chinese)

Adobe DNG SDK是美国奥多比（Adobe）公司的一款提供读取和写入DNG文件功能的软件开发工具包。 Adobe DNG SDK 1.7.0及之前版本存在安全漏洞，该漏洞源于堆缓冲区溢出，可能导致内存泄露或拒绝服务。

Description (English)

Adobe DNG SDK is a software development toolkit for reading and writing DNG files from Adobe USA. There is a security gap in Adobe DNG SDK 1.7.0 and earlier versions, which stems from the spilling of the buffer zone, which could lead to a leak in memory or a denial of services.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

奥多比

Published

2025-12-09

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html

Patch

https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html