CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64784

DNG SDK versions 1.7.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead to memory exposure or application denial of service. An attacker could leverage this vulnerability to disclose sensitive memory information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.0%

CVSS Severity

CVSS v3 Score 7.1

References

https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html

Products affected by CVE-2025-64784

Adobe » Dng Software Development Kit » Version: N/A

cpe:2.3:a:adobe:dng_software_development_kit:-
Adobe » Dng Software Development Kit » Version: 1.4.2012

cpe:2.3:a:adobe:dng_software_development_kit:1.4.2012
Adobe » Dng Software Development Kit » Version: 1.5

cpe:2.3:a:adobe:dng_software_development_kit:1.5
Adobe » Dng Software Development Kit » Version: 1.5.1

cpe:2.3:a:adobe:dng_software_development_kit:1.5.1
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64784

Products

Pricing

Contact Us