CVE-2026-47909
6.3 MEDIUMDreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary fil...
Published: 2026-06-09 · Last updated: 2026-06-10
Severity and scoring
- CVSS
- 6.3 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
- CWE
- CWE-20
Description
Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-49218 — ImageMagick is free and open-source software used for editing and manipulating digital images (7.5 HIGH)
- CVE-2024-21944 — Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a ... (5.3 MEDIUM)
- CVE-2026-48110 — Russh is a Rust SSH client & server library (7.5 HIGH)
- CVE-2026-48108 — Russh is a Rust SSH client & server library (5.3 MEDIUM)
- CVE-2026-48107 — Russh is a Rust SSH client & server library (6.5 MEDIUM)