{"api_version":"1","generated_at":"2026-06-19T11:38:56+00:00","cve":"CVE-2019-7956","urls":{"html":"https://cve.report/CVE-2019-7956","api":"https://cve.report/api/cve/CVE-2019-7956.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2019-7956","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2019-7956"},"summary":{"title":"CVE-2019-7956","description":"Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user.","state":"PUBLIC","assigner":"psirt@adobe.com","published_at":"2019-07-18 22:15:00","updated_at":"2021-07-21 11:39:00"},"problem_types":["CWE-427"],"metrics":[],"references":[{"url":"https://helpx.adobe.com/security/products/dreamweaver/apsb19-40.html","name":"https://helpx.adobe.com/security/products/dreamweaver/apsb19-40.html","refsource":"MISC","tags":["Vendor Advisory"],"title":"Adobe Security Bulletin","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2019-7956","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-7956","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2019","cve_id":"7956","vulnerable":"1","versionEndIncluding":"19.0","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"adobe","cpe5":"dreamweaver","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"7956","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"7956","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"microsoft","cpe5":"windows","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","CVE_data_meta":{"ID":"CVE-2019-7956","ASSIGNER":"psirt@adobe.com","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"n/a","product":{"product_data":[{"product_name":"Adobe Dreamweaver","version":{"version_data":[{"version_value":"Adobe Dreamweaver?direct download installer version 19.0 and below, 18.0 and below"}]}}]}}]}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Insecure Library Loading (DLL hijacking)?"}]}]},"references":{"reference_data":[{"refsource":"MISC","name":"https://helpx.adobe.com/security/products/dreamweaver/apsb19-40.html","url":"https://helpx.adobe.com/security/products/dreamweaver/apsb19-40.html"}]},"description":{"description_data":[{"lang":"eng","value":"Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user."}]}},"nvd":{"publishedDate":"2019-07-18 22:15:00","lastModifiedDate":"2021-07-21 11:39:00","problem_types":["CWE-427"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL","baseScore":6.8},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:adobe:dreamweaver:*:*:*:*:*:*:*:*","versionEndIncluding":"19.0","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":{"CveYear":"2019","CveId":"7956","Ordinal":"145789","Title":"CVE-2019-7956","CVE":"CVE-2019-7956","Year":"2019"},"notes":[{"CveYear":"2019","CveId":"7956","Ordinal":"1","NoteData":"Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user.","Type":"Description","Title":null},{"CveYear":"2019","CveId":"7956","Ordinal":"2","NoteData":"2019-07-18","Type":"Other","Title":"Published"},{"CveYear":"2019","CveId":"7956","Ordinal":"3","NoteData":"2019-07-18","Type":"Other","Title":"Modified"}]}}}