CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-21352

DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://helpx.adobe.com/security/products/dng-sdk/apsb26-23.html

Products affected by CVE-2026-21352

Adobe » Dng Software Development Kit » Version: N/A

cpe:2.3:a:adobe:dng_software_development_kit:-
Adobe » Dng Software Development Kit » Version: 1.4.2012

cpe:2.3:a:adobe:dng_software_development_kit:1.4.2012
Adobe » Dng Software Development Kit » Version: 1.5

cpe:2.3:a:adobe:dng_software_development_kit:1.5
Adobe » Dng Software Development Kit » Version: 1.5.1

cpe:2.3:a:adobe:dng_software_development_kit:1.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-21352

Products

Pricing

Contact Us