📦 Connect
by Adobe
🔍 What is Connect?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
Adobe Connect versions 12.9 and earlier contain a DOM-based Cross-Site Scripting vulnerability that allows attackers to execute malicious JavaScript in victims' browsers. Exploitation requires user in...
Adobe Connect versions 24.0 and earlier contain a deserialization vulnerability that allows attackers to execute arbitrary code on affected systems. Exploitation requires user interaction, such as tri...
Adobe Connect versions 12.8 and earlier contain a reflected Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious scripts into vulnerable form fields. When victims browse to pa...
Adobe Connect versions 12.6, 11.4.7 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability where attackers can inject malicious scripts into form fields. When users visit pages with the...
This stored Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to inject malicious JavaScript into vulnerable form fields. When victims visit pages containing the injected scri...
This vulnerability allows remote attackers to execute arbitrary code on Saphira Connect systems by exploiting unnecessary privilege execution. It affects all Saphira Connect installations before versi...
CVE-2021-40719 is a critical deserialization vulnerability in Adobe Connect that allows attackers to execute arbitrary code on affected servers by sending malicious AMF messages. This affects Adobe Co...
Adobe Connect versions 12.9 and earlier contain a DOM-based XSS vulnerability that allows high-privileged attackers to execute malicious scripts in victims' browsers. Exploitation requires user intera...
Saphira Connect versions before 9 have incorrect default permissions that allow local users to escalate privileges. This vulnerability affects all systems running vulnerable versions of Saphira Connec...
Adobe Connect versions 12.8 and earlier contain a stored Cross-Site Scripting vulnerability where attackers can inject malicious JavaScript into form fields. When users visit pages containing the comp...
Adobe Connect versions 12.8 and earlier contain a stored Cross-Site Scripting vulnerability that allows low-privileged attackers to inject malicious JavaScript into form fields. When victims visit pag...
This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to execute malicious JavaScript in victims' browsers by tricking them into clicking specially crafted URLs. Un...
This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to execute malicious JavaScript in victims' browsers by tricking them into clicking specially crafted URLs. Un...
Adobe Connect versions 12.6, 11.4.7 and earlier contain an open redirect vulnerability (CWE-601) that allows attackers to redirect users to malicious websites. This requires user interaction such as c...
CVE-2024-54038 is an improper access control vulnerability in Adobe Connect that allows low-privileged attackers to bypass security measures. This affects Adobe Connect versions 12.6, 11.4.7 and earli...
This stored Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows attackers to inject malicious JavaScript into vulnerable form fields. When users visit pages containing the compromised fie...
This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows unauthenticated attackers to execute malicious JavaScript in victims' browsers by tricking them into visiting specially ...
This reflected Cross-Site Scripting (XSS) vulnerability in Adobe Connect allows unauthenticated attackers to execute malicious JavaScript in victims' browsers by tricking them into clicking specially ...