How severe is CVE-2026-21267?

CVE-2026-21267 has a CVSS v3 score of 8.6 (HIGH).

CVE-2026-21267

8.6HIGH

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary c

发布于: 1/13/2026更新于: 1/14/2026

描述

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is changed.

AI分析AI驱动

受影响产品

adobedreamweaver

applemacos

microsoftwindows

参考资料

https://helpx.adobe.com/security/products/dreamweaver/apsb26-01.html
Vendor Advisory