CVE-2018-4924

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Dreamweaver Cc 18.0 And Earlier Versions
Vendor: CVE Published:; 19 May 2018

Summary

Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Affected Version(s)

Adobe Dreamweaver CC 18.0 and earlier Adobe Dreamweaver CC 18.0 and earlier versions

References

https://helpx.adobe.com/security/products/dreamweaver/aps...

x_refsource_MISC

http://www.securityfocus.com/bid/103395

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1040516

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 19, 2018
Vulnerability Reserved
Jan 3, 2018