{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T09:48:48.433","vulnerabilities":[{"cve":{"id":"CVE-2026-21355","sourceIdentifier":"psirt@adobe.com","published":"2026-02-10T19:15:59.503","lastModified":"2026-02-13T20:37:41.920","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"DNG SDK versions 1.7.1 2410 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file."},{"lang":"es","value":"Las versiones 1.7.1 2410 y anteriores del SDK de DNG están afectadas por una vulnerabilidad de lectura fuera de límites que podría conducir a la exposición de memoria. Un atacante podría aprovechar esta vulnerabilidad para divulgar información sensible almacenada en la memoria. La explotación de este problema requiere interacción del usuario, en el sentido de que una víctima debe abrir un archivo malicioso."}],"metrics":{"cvssMetricV31":[{"source":"psirt@adobe.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@adobe.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:dng_software_development_kit:*:*:*:*:*:*:*:*","versionEndExcluding":"1.7.2","matchCriteriaId":"39CD12E3-C567-4F3D-A37A-B73D3B4DCFCD"}]}]}],"references":[{"url":"https://helpx.adobe.com/security/products/dng-sdk/apsb26-23.html","source":"psirt@adobe.com","tags":["Vendor Advisory"]}]}}]}