Out-of-Bounds Read Vulnerability in Adobe DNG Software Development Kit
CVE-2020-9629
5.5MEDIUM
Key Information:
- Vendor
- Adobe
- Vendor
- CVE Published:
- 26 June 2020
Summary
Adobe DNG Software Development Kit (SDK) versions 1.5 and earlier have a vulnerability that may allow an attacker to exploit an out-of-bounds read. This could potentially lead to unauthorized exposure of sensitive information. Users are encouraged to upgrade to the latest version to mitigate these risks.
Affected Version(s)
Adobe DNG Software Development Kit (SDK) Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved