CVE-2021-21055 — MEDIUM (6.2)

Q: How severe is CVE-2021-21055?

CVE-2021-21055 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-21055?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Dreamweaver, Apple Macos, Microsoft Windows.

Vulnerability Description

Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could result in information disclosure. An attacker with physical access to the system could replace certain configuration files and dynamic libraries that Dreamweaver references, potentially resulting in information disclosure.

CVSS Score

6.2

MEDIUM

CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Adobe	Dreamweaver	<= 20.2
Apple	Macos	-
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-426

References

https://helpx.adobe.com/security/products/dreamweaver/apsb21-13.htmlVendor Advisory
https://helpx.adobe.com/security/products/dreamweaver/apsb21-13.htmlVendor Advisory

FAQ

What is CVE-2021-21055?

CVE-2021-21055 is a vulnerability with a CVSS score of 6.2 (MEDIUM). Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could result in information disclosure. An attacker with physical access...

How severe is CVE-2021-21055?

CVE-2021-21055 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-21055?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Dreamweaver, Apple Macos, Microsoft Windows.