CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-27258

DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to application denial-of-service. An attacker could leverage this vulnerability to corrupt memory, causing the application to crash or become unresponsive. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.6%

CVSS Severity

CVSS v3 Score 5.5

References

https://helpx.adobe.com/security/products/dng-sdk/apsb26-41.html

Products affected by CVE-2026-27258

Adobe » Dng Software Development Kit » Version: N/A

cpe:2.3:a:adobe:dng_software_development_kit:-
Adobe » Dng Software Development Kit » Version: 1.4.2012

cpe:2.3:a:adobe:dng_software_development_kit:1.4.2012
Adobe » Dng Software Development Kit » Version: 1.5

cpe:2.3:a:adobe:dng_software_development_kit:1.5
Adobe » Dng Software Development Kit » Version: 1.5.1

cpe:2.3:a:adobe:dng_software_development_kit:1.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-27258

Products

Pricing

Contact Us