Dreamweaver Desktop <21.7 DEP Vulnerable 3rdParty Comp ArbCE
CVE-2026-47906 Published on June 9, 2026

Dreamweaver Desktop | Dependency on Vulnerable Third-Party Component (CWE-1395)
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2026-47906 is exploitable with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

CHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

CWE-1395

Products Associated with CVE-2026-47906

Want to know whenever a new CVE is published for Adobe Dreamweaver? stack.watch will email you.

Adobe Dreamweaver

Affected Versions

Adobe Dreamweaver Desktop:

Before and including 21.7 is affected.

Dreamweaver Desktop <21.7 DEP Vulnerable 3rdParty Comp ArbCECVE-2026-47906 Published on June 9, 2026

Vulnerability Analysis

Weakness Type

Products Associated with CVE-2026-47906

Affected Versions

Dreamweaver Desktop <21.7 DEP Vulnerable 3rdParty Comp ArbCE
CVE-2026-47906 Published on June 9, 2026