PatchSiren cyber security CVE debrief
CVE-2026-47906 Adobe CVE debrief
CVE-2026-47906 is a Dependency on Vulnerable Third-Party Component vulnerability affecting Adobe Dreamweaver Desktop versions 21.7 and earlier. This vulnerability could result in arbitrary code execution in the context of the current user, with a CVSS score of 8.6 and a HIGH severity rating. Exploitation requires user interaction, as a victim must open a malicious file.
- Vendor
- Adobe
- Product
- Dreamweaver
- CVSS
- HIGH 8.6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-11
Who should care
Users of Adobe Dreamweaver Desktop versions 21.7 and earlier should be aware of this vulnerability and take necessary precautions.
Technical summary
The vulnerability exists in Adobe Dreamweaver Desktop versions 21.7 and earlier. It has a CVSS vector of CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H.
Defensive priority
HIGH
Recommended defensive actions
- Users should update to a patched version of Adobe Dreamweaver Desktop as soon as possible.
- Until patched, users should exercise caution when opening files from unknown sources.
Evidence notes
This vulnerability has been analyzed and verified by the NVD.
Official resources
-
CVE-2026-47906 CVE record
CVE.org
-
CVE-2026-47906 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE-2026-47906 was published on 2026-06-09T20:16:59.687Z and modified on 2026-06-11T19:22:22.653Z.