CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30310 – Dreamweaver Desktop | Access of Resource Using Incompatible Type ('Type Confusion') (CWE-843)
https://notcve.org/view.php?id=CVE-2025-30310
13 May 2025 — Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion') vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Dreamweaver. User interaction is required to exploit this vulnerability in that the tar... • https://helpx.adobe.com/security/products/dreamweaver/apsb25-35.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30314 – Dreamweaver Desktop | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
https://notcve.org/view.php?id=CVE-2024-30314
16 May 2024 — Dreamweaver Desktop versions 21.3 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. Exploitation of this issue does require user interaction. Las versiones 21.3 y anteriores de Dreamweaver Desktop se ven afectadas por una neutralización incorrecta de elementos especiales utilizados en una vulnerabilidad de comando del sistema operativo ('inyección de comando del s... • https://helpx.adobe.com/security/products/dreamweaver/apsb24-39.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •