CVE-2018-4924

CWE-78OS Command Injection3 documents3 sources
Severity
9.8CRITICAL
EPSS
26.8%
top 3.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Dreamweaver
Timeline
PublishedMay 19
Latest updateMay 14

Description

Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5adobe_dreamweaver_cc_18.0_and_earlier_versionsAdobe Dreamweaver CC 18.0 and earlier versions

🔴Vulnerability Details

2
GHSA
GHSA-cf6v-j66p-w88f: Adobe Dreamweaver CC versions 182022-05-14
CVEList
CVE-2018-4924: Adobe Dreamweaver CC versions 182018-05-19
CVE-2018-4924 (CRITICAL CVSS 9.8) | Adobe Dreamweaver CC versions 18.0 | cvebase.io