CNNVD-202602-1454 Information

CNNVD ID

CNNVD-202602-1454

Related CVE

CVE-2026-21355

• CNNVD Published: 2026-02-10

Description (Chinese)

Adobe DNG SDK是美国奥多比（Adobe）公司的一款提供读取和写入DNG文件功能的软件开发工具包。 Adobe DNG SDK 1.7.1 2410及之前版本存在缓冲区错误漏洞，该漏洞源于越界读取，可能导致内存信息泄露。

Description (English)

Adobe DNG SDK is a software development toolkit for reading and writing DNG files from Adobe USA. Adobe DNG SDK 1.7.1 2410 and previous versions had an error loophole in the buffer zone, which originated in cross-border access and could lead to the disclosure of memory information.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

奥多比

Published

2026-02-10

Last Modified

2026-02-24

References

https://helpx.adobe.com/security/products/dng-sdk/apsb26-23.html

Patch

https://helpx.adobe.com/security/products/dng-sdk/apsb26-23.html