CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64894

DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this issue to cause the application to crash or become unresponsive. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.7%

CVSS Severity

CVSS v3 Score 5.5

References

https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html

Products affected by CVE-2025-64894

Adobe » Dng Software Development Kit » Version: N/A

cpe:2.3:a:adobe:dng_software_development_kit:-
Adobe » Dng Software Development Kit » Version: 1.4.2012

cpe:2.3:a:adobe:dng_software_development_kit:1.4.2012
Adobe » Dng Software Development Kit » Version: 1.5

cpe:2.3:a:adobe:dng_software_development_kit:1.5
Adobe » Dng Software Development Kit » Version: 1.5.1

cpe:2.3:a:adobe:dng_software_development_kit:1.5.1
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64894

Products

Pricing

Contact Us