Skip to main content

Adobe DNG SDK CVE-2026-48267

| EUVDEUVD-2026-41920 MEDIUM
NULL Pointer Dereference (CWE-476)
2026-07-06 adobe GHSA-fjc5-2qg4-f64g
5.5
CVSS 3.1 · Vendor: adobe
Share

Severity by source

Vendor (adobe) PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
vuln.today AI
5.5 MEDIUM

Malicious file must be opened locally by a victim (AV:L/UI:R); no attacker credentials needed; impact is exclusively application crash with no confidentiality or integrity exposure.

3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.0 AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (adobe).

CVSS VectorVendor: adobe

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
Analysis Generated
Jul 06, 2026 - 21:01 vuln.today

DescriptionCVE.org

DNG SDK versions 1.7.1 2536 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

AnalysisAI

Null Pointer Dereference in Adobe DNG SDK versions 1.7.1 build 2536 and earlier allows an attacker to crash any application embedding the SDK by supplying a specially crafted DNG file. The flaw is strictly a denial-of-service with no confidentiality or integrity impact, and requires a victim to open the malicious file, constraining realistic exposure to imaging pipelines or end-user applications that ingest untrusted DNG content. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Craft malicious DNG file
Delivery
Deliver file to victim via email or download
Exploit
Victim opens file in SDK-dependent application
Execution
Null pointer dereference triggered in DNG parser
Impact
Host application crashes (DoS)

Vulnerability AssessmentAI

Exploitation Exploitation requires that a victim actively open a specially crafted DNG file using an application that embeds Adobe DNG SDK version 1.7.1 build 2536 or earlier (CVSS UI:R). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 score of 5.5 (Medium) accurately reflects the constrained threat model: AV:L requires the malicious file to be opened on the local system, UI:R mandates victim interaction, and the impact is bounded to A:H with no confidentiality or integrity exposure (C:N/I:N). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a malformed DNG raw image file designed to trigger the null pointer dereference in the SDK parser, then delivers it to a victim via email attachment, shared network folder, or a download link on a compromised website. When the victim opens the file in an application - such as an image editor or DAM client - built on Adobe DNG SDK 1.7.1 build 2536 or earlier, the parser hits the invalid code path and the host application crashes. …
Remediation The primary fix is to update the Adobe DNG SDK to the version specified in Adobe advisory APSB26-67 at https://helpx.adobe.com/security/products/dng-sdk/apsb26-67.html; the exact patched build number should be confirmed directly from that advisory, as it was not present in the source intelligence. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-48267 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy