CVE-2021-21055

Description

Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could result in information disclosure. An attacker with physical access to the system could replace certain configuration files and dynamic libraries that Dreamweaver references, potentially resulting in information disclosure.

Risk Information

Base Score

6.2

MODERATE

Vector

CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.377

Associated Vulnerability

Vulnerability	OS Platform
Multiple Vulnerabilities are affected in Adobe Dreamweaver 20.2.0	Windows
Multiple Vulnerabilities are affected in Adobe Dreamweaver 21.0	Windows
Vulnerabilities CVE-2021-21055 are fixed in Adobe Dreamweaver for Mac 20.2.1	Mac
Vulnerabilities CVE-2021-21055 are fixed in Adobe Dreamweaver for Mac 21.1	Mac

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234