CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-47964

DNG SDK versions 1.7.1 2536 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 9.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://helpx.adobe.com/security/products/dng-sdk/apsb26-67.html

Products affected by CVE-2026-47964

Adobe » Dng Software Development Kit » Version: N/A

cpe:2.3:a:adobe:dng_software_development_kit:-
Adobe » Dng Software Development Kit » Version: 1.4.2012

cpe:2.3:a:adobe:dng_software_development_kit:1.4.2012
Adobe » Dng Software Development Kit » Version: 1.5

cpe:2.3:a:adobe:dng_software_development_kit:1.5
Adobe » Dng Software Development Kit » Version: 1.5.1

cpe:2.3:a:adobe:dng_software_development_kit:1.5.1
Adobe » Dng Software Development Kit » Version: 1.7.0

cpe:2.3:a:adobe:dng_software_development_kit:1.7.0
Adobe » Dng Software Development Kit » Version: 1.7.1

cpe:2.3:a:adobe:dng_software_development_kit:1.7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-47964

Products

Pricing

Contact Us