CVE-2019-7956

7.8HIGH

Key Information:

Vendor: Adobe
Status: Adobe Dreamweaver
Vendor: CVE Published:; 18 July 2019

Summary

Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user.

Affected Version(s)

Adobe Dreamweaver Adobe Dreamweaver?direct download installer version 19.0 and below, 18.0 and below

References

https://helpx.adobe.com/security/products/dreamweaver/aps...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jul 18, 2019
Vulnerability Reserved
Feb 12, 2019