Input Handling Vulnerability in Adobe Brackets Extension Manager
CVE-2016-4165

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Brackets
Vendor: CVE Published:; 16 June 2016

Summary

The extension manager in Adobe Brackets prior to version 1.7 is susceptible to an input handling vulnerability that enables attackers to exploit invalid input. This weakness can lead to various unspecified impacts, which may compromise the security and functionality of the application. Users are encouraged to update to the latest version to mitigate potential risks associated with this vulnerability.

References

https://helpx.adobe.com/security/products/brackets/apsb16...

x_refsource_CONFIRM

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2016
Vulnerability Reserved
Apr 27, 2016