Vulnerability Details CVE-2018-4924
Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.313
EPSS Ranking 96.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://www.securityfocus.com/bid/103395
- http://www.securitytracker.com/id/1040516
- https://helpx.adobe.com/security/products/dreamweaver/apsb18-07.html
- http://www.securityfocus.com/bid/103395
- http://www.securitytracker.com/id/1040516
- https://helpx.adobe.com/security/products/dreamweaver/apsb18-07.html
Products affected by CVE-2018-4924
-
cpe:2.3:a:adobe:dreamweaver:-
-
cpe:2.3:a:adobe:dreamweaver:1.0.0
-
cpe:2.3:a:adobe:dreamweaver:10.0
-
cpe:2.3:a:adobe:dreamweaver:11.0
-
cpe:2.3:a:adobe:dreamweaver:13.0
-
cpe:2.3:a:adobe:dreamweaver:13.1
-
cpe:2.3:a:adobe:dreamweaver:13.2
-
cpe:2.3:a:adobe:dreamweaver:14.0
-
cpe:2.3:a:adobe:dreamweaver:18.0
-
cpe:2.3:a:adobe:dreamweaver:6.1
-
cpe:2.3:a:adobe:dreamweaver:7.0
-
cpe:2.3:a:adobe:dreamweaver:8.0
-
cpe:2.3:a:adobe:dreamweaver:9.0
-
cpe:2.3:o:microsoft:windows:-