Skip to main content

Adobe DNG SDK CVE-2026-47963

| EUVDEUVD-2026-37135 MEDIUM
Out-of-bounds Read (CWE-125)
2026-06-16 adobe GHSA-2r87-8x7j-8ppq
5.5
CVSS 3.1 · Vendor: adobe
Share

Severity by source

Vendor (adobe) PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
vuln.today AI
5.5 MEDIUM

AV:L for file-based local delivery, UI:R for mandatory victim file-open, PR:N as no credentials are needed, C:H for potential sensitive memory leakage, with I:N and A:N as no write or crash impact applies.

3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
4.0 AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (adobe).

CVSS VectorVendor: adobe

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jun 16, 2026 - 19:08 vuln.today

DescriptionCVE.org

DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

AnalysisAI

Out-of-bounds read in Adobe DNG SDK 1.7.1 build 2536 and earlier exposes sensitive process memory when a victim opens a specially crafted Digital Negative (DNG) image file. The vulnerability is confined to information disclosure - no code execution or data modification is achievable - and requires local file delivery combined with explicit user interaction, as reflected by the CVSS AV:L/UI:R metrics. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Craft malicious DNG file with manipulated buffer offsets
Delivery
Deliver file to victim via email, download, or shared storage
Exploit
Victim opens file in DNG SDK-based application
Execution
SDK parser triggers out-of-bounds read
Impact
Sensitive process memory contents disclosed to attacker

Vulnerability AssessmentAI

Exploitation Exploitation explicitly requires a victim user to actively open a specially crafted DNG file using software built on Adobe DNG SDK 1.7.1 build 2536 or earlier - this user interaction requirement (UI:R) is stated in the CVE description and reflected in the CVSS vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N reflects a constrained threat model: exploitation requires local file delivery and active victim cooperation (opening the file), with no network-reachable attack path and no privilege escalation or availability impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a malicious DNG file with manipulated buffer offset or length values and delivers it to a victim via email attachment, shared storage, or a web download. When the victim opens the file in any application built on the vulnerable DNG SDK - such as a photo editor, raw converter, or DAM system - the SDK's parser triggers an out-of-bounds read, potentially leaking adjacent heap or stack memory to the attacker if the application surfaces error details or parsed metadata. …
Remediation Upgrade Adobe DNG SDK to a version beyond 1.7.1 build 2536 by consulting Adobe Security Bulletin APSB26-67 at https://helpx.adobe.com/security/products/dng-sdk/apsb26-67.html for the confirmed fixed build number - the exact patched version is not independently stated in the available data and should be verified directly against the advisory before deployment. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-47963 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy