{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-47908: Dreamweaver Desktop | Access of Uninitialized Pointer (CWE-824)","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-47908","status":"final","version":"1","initial_release_date":"2026-06-09T19:24:05.406Z","current_release_date":"2026-06-10T03:59:35.224Z","revision_history":[{"date":"2026-06-09T19:24:05.406Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-47908 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-47908"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-47908"},{"category":"external","summary":"helpx.adobe.com","url":"https://helpx.adobe.com/security/products/dreamweaver/apsb26-62.html"}]},"product_tree":{"branches":[{"category":"vendor","name":"Adobe","branches":[{"category":"product_name","name":"Dreamweaver Desktop","branches":[{"category":"product_version_range","name":"<=21.7","product":{"name":"Adobe Dreamweaver Desktop <=21.7","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:adobe:dreamweaver_desktop:*:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-47908","title":"Dreamweaver Desktop | Access of Uninitialized Pointer (CWE-824)","notes":[{"category":"description","text":"Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1"]},"scores":[{"cvss_v3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH"},"products":["CSAFPID-1"]}],"remediations":[{"category":"none_available","details":"No fixed version is published yet. Monitor the upstream advisory.","product_ids":["CSAFPID-1"]}]}]}