Description

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is changed.

Related CPE's

a

adobe

dreamweaver

Vulnerable

o

apple

macos

-

o

microsoft

windows

-

References

https://helpx.adobe.com/security/products/dreamweaver/apsb26-01.html

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

8.6 · High

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-13T19:16:24.703Z

32 hours ago

Last modified

2026-01-14T20:49:33.830Z

6 hours ago