CVE 8.6 HIGH

Dreamweaver Desktop | Improper Input Validation (CWE-20)_CVE-2026-21272

January 13, 2026 invoker category_cve

8.6 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is changed.

AI Analysis

Improper Input Validation vulnerability allowing arbitrary file system write

Basic Information

ID CVE-2026-21272

Source adobe

Published Jan 13, 2026 at 18:25

Modified Jan 13, 2026 at 18:47

Affected Product

Vendor Adobe

Product Dreamweaver Desktop

Version 21.6 and earlier

Affected Versions Adobe Dreamweaver Desktop 0

CWE Classification

CWE-20

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Adobe

Product Dreamweaver Desktop

Version 21.6 and earlier

References

helpx.adobe.com /security/products/dreamweaver/apsb26-01.html

{
    "lastseen": "",
    "description": "Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is changed.",
    "published": "2026-01-13T18:25:34.935Z",
    "modified": "2026-01-13T18:47:15.810Z",
    "type": "cve",
    "title": "Dreamweaver Desktop | Improper Input Validation (CWE-20)",
    "source": "adobe",
    "references": "https://helpx.adobe.com/security/products/dreamweaver/apsb26-01.html",
    "id": "CVE-2026-21272",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "Adobe Dreamweaver Desktop 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Dreamweaver Desktop",
    "version": "21.6 and earlier",
    "vendor": "Adobe",
    "ai_description": "Improper Input Validation vulnerability allowing arbitrary file system write",
    "ai_severity": "High",
    "ai_vendor": "Adobe",
    "ai_product": "Dreamweaver Desktop",
    "ai_version": "21.6 and earlier",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply