Out-of-Bounds Read Vulnerability in Adobe DNG Software Development Kit
CVE-2020-9629

5.5MEDIUM

Key Information:

Vendor
Adobe
Status
Adobe Dng Software Development Kit (sdk)
Vendor
CVE Published:
26 June 2020

Summary

Adobe DNG Software Development Kit (SDK) versions 1.5 and earlier have a vulnerability that may allow an attacker to exploit an out-of-bounds read. This could potentially lead to unauthorized exposure of sensitive information. Users are encouraged to upgrade to the latest version to mitigate these risks.

Affected Version(s)

Adobe DNG Software Development Kit (SDK) Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions

References

https://helpx.adobe.com/security/products/dng-sdk/apsb20-...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.