virus logo FortiClient Vulnerability

Adobe Connect Cross Site Scripting Vulnerability

description-logoDescription

Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victims browser when they browse to the page containing the vulnerable field. There is also a secure design principles violation vulnerability where an unauthenticated attacker could leverage this vulnerability to edit or delete recordings on the Connect environment.

affected-products-logoAffected Applications

Adobe Connect

CVE References

CVE-2021-36063 CVE-2021-36062

Other References

https://helpx.adobe.com/security/products/connect/apsb21-66.html
ID 2396
Created Sep 24, 2021
Description
Updated		 Aug 08, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Adobe
Patch manual
Application Adobe Connect