1. Home
  2. CVE Database
  3. CVE-2025-0081
HIGH · 7.5

CVE-2025-0081

In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional executi...

Vulnerability Description

In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
GoogleAndroid12.0

Related Weaknesses (CWE)

CWE-457

References

FAQ

What is CVE-2025-0081?

CVE-2025-0081 is a vulnerability with a CVSS score of 7.5 (HIGH). In dng_lossless_decoder::HuffDecode of dng_lossless_jpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional executi...

How severe is CVE-2025-0081?

CVE-2025-0081 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-0081?

Check the references section above for vendor advisories and patch information. Affected products include: Google Android.