Adobe Dreamweaver 20.2

CPE Details

Adobe Dreamweaver 20.2
adobe
dreamweaver
20.2
2020-11-02
17h57 +00:00
2020-11-02
17h57 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:adobe:dreamweaver:20.2:*:*:*:*:*:*:*

Informations

Vendor

adobe

Product

dreamweaver

Version

20.2

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-30314 2024-05-16 11h36 +00:00 Dreamweaver Desktop versions 21.3 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. Exploitation of this issue does require user interaction.
7.8
Haute
CVE-2021-21055 2021-02-11 20h12 +00:00 Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could result in information disclosure. An attacker with physical access to the system could replace certain configuration files and dynamic libraries that Dreamweaver references, potentially resulting in information disclosure.
6.2
Moyen
CVE-2020-24425 2020-10-21 20h07 +00:00 Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. Successful exploitation could result in a local user with permissions to write to the file system running system commands with administrator privileges.
7.8
Haute
CVE-2008-6062 2009-02-05 00h00 +00:00 Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by Adobe Dreamweaver, when the Insert Flash Video feature is used, allows remote attackers to inject arbitrary web script or HTML via an asfunction: URI in the skinName parameter. NOTE: this may overlap CVE-2007-6242, CVE-2007-6244, or CVE-2007-6637.
4.3