Vulnerability Details CVE-2025-0081
In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.1%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2025-0081
-
cpe:2.3:o:google:android:12.0
-
cpe:2.3:o:google:android:12.1
-
cpe:2.3:o:google:android:13.0
-
cpe:2.3:o:google:android:14.0
-
cpe:2.3:o:google:android:15.0