Insecure Library Loading Vulnerability in Adobe Dreamweaver
CVE-2019-7956

7.8HIGH

Key Information:

Vendor: Adobe
Status: Adobe Dreamweaver
Vendor: CVE Published:; 18 July 2019

Summary

Adobe Dreamweaver versions 19.0 and below, as well as 18.0 and lower, are susceptible to an Insecure Library Loading vulnerability. This issue allows an attacker to exploit DLL hijacking techniques, potentially leading to privilege escalation within the context of the current user. Users are advised to update their software to mitigate the risk associated with this vulnerability.

Affected Version(s)

Adobe Dreamweaver Adobe Dreamweaver?direct download installer version 19.0 and below, 18.0 and below

References

https://helpx.adobe.com/security/products/dreamweaver/aps...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jul 18, 2019
Vulnerability Reserved
Feb 12, 2019