PatchSiren cyber security CVE debrief
CVE-2026-47910 Adobe CVE debrief
CVE-2026-47910 is a MEDIUM-severity vulnerability in Adobe Dreamweaver Desktop versions 21.7 and earlier. The vulnerability is caused by an Incorrect Authorization issue, which could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issue requires user interaction, as a victim must open a malicious file.
- Vendor
- Adobe
- Product
- Dreamweaver Desktop
- CVSS
- MEDIUM 6.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-11
Who should care
Users of Adobe Dreamweaver Desktop versions 21.7 and earlier should apply the necessary updates to prevent exploitation of this vulnerability.
Technical summary
The vulnerability has a CVSS score of 6.3 and a CVSS severity of MEDIUM. The CVSS vector is CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N. The weakness is classified as CWE-863.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the necessary updates to Adobe Dreamweaver Desktop versions 21.7 and earlier.
- Ensure users do not open malicious files.
Evidence notes
The vulnerability was published on 2026-06-09T20:17:00.177Z and modified on 2026-06-11T19:16:52.080Z. The CVE record can be found at [cve-org]. The NVD detail can be found at [nvd]. The vendor advisory can be found at [ref-4].
Official resources
-
CVE-2026-47910 CVE record
CVE.org
-
CVE-2026-47910 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE-2026-47910 was published on 2026-06-09T20:17:00.177Z and modified on 2026-06-11T19:16:52.080Z.