====================================================================

                             CERT-Renater

                 Note d'Information No. 2021/VULN091
_____________________________________________________________________

DATE                : 10/02/2021

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S):  Systems running Adobe Dreamweaver versions prior
                                     to 20.2.1, 21.1.

=====================================================================
https://helpx.adobe.com/security/products/dreamweaver/apsb21-13.html
_____________________________________________________________________

Security update available for Adobe Dreamweaver | APSB21-13
Bulletin ID 	Date Published         Priority
APSB21-13	February 09, 2021	3


Summary

Adobe has released a security update for Adobe Dreamweaver.  This update
resolves a vulnerability rated important. Successful exploitation could
lead to sensitive information disclosure in the context of the current
user.


Affected Versions

Product 	Affected Versions 	Platform
Adobe Dreamweaver    20.2                Windows and macOS
Adobe Dreamweaver    21.0                Windows and macOS


Solution

Adobe categorizes this update with the following priority rating and
recommends users to use latest builds for new installation via the
Creative Cloud desktop app updater, or by navigating to the Dreamweaver
Help menu and clicking "Updates." For more information, please reference
this help page. 


Product 	Updated Version 	Platform 	Priority rating
Adobe Dreamweaver 	20.2.1     Windows and macOS 	3
Adobe Dreamweaver 	21.1       Windows and macOS 	3

Note:

Note:  For managed environments, IT administrators can use the Creative
Cloud Packager to create deployment packages. Refer to this
help page for more information on the Creative Cloud Packager.  


Vulnerability Details

Vulnerability Category 	Vulnerability Impact 	Severity     CVE Numbers

Uncontrolled Search Path Element   Information disclosure   Important
CVE-2021-21055


Acknowledgements

Adobe would like to thank Xavier DANEST from Decathlon for reporting
these issues and working with Adobe to help protect our customers.



=========================================================
+ CERT-RENATER       |    tel : 01-53-94-20-44          +
+ 23/25 Rue Daviel   |    fax : 01-53-94-20-41          +
+ 75013 Paris        |    email:cert@support.renater.fr +
=========================================================