Adobe Dreamweaver Desktop <21.7 Uninitialized Pointer Code Exec
CVE-2026-47908 Published on June 9, 2026

Dreamweaver Desktop | Access of Uninitialized Pointer (CWE-824)
Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2026-47908 is exploitable with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Access of Uninitialized Pointer

The program accesses or uses a pointer that has not been initialized.

Products Associated with CVE-2026-47908

Want to know whenever a new CVE is published for Adobe Dreamweaver? stack.watch will email you.

Adobe Dreamweaver

Affected Versions

Adobe Dreamweaver Desktop:

Before and including 21.7 is affected.

Adobe Dreamweaver Desktop <21.7 Uninitialized Pointer Code ExecCVE-2026-47908 Published on June 9, 2026

Vulnerability Analysis

Weakness Type

Access of Uninitialized Pointer

Products Associated with CVE-2026-47908

Affected Versions

Adobe Dreamweaver Desktop <21.7 Uninitialized Pointer Code Exec
CVE-2026-47908 Published on June 9, 2026