← Retour aux CVEs
CVE-2021-36061
MEDIUM5.4
Description
Adobe Connect version 11.2.2 (and earlier) is affected by a secure design principles violation vulnerability via the 'pbMode' parameter. An unauthenticated attacker could leverage this vulnerability to edit or delete recordings on the Connect environment. Exploitation of this issue requires user interaction in that a victim must publish a link of a Connect recording.
Details CVE
Score CVSS v3.15.4
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurREQUIRED
Publie9/1/2021
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
adobe:connect
Faiblesses (CWE)
CWE-657
References
https://helpx.adobe.com/security/products/connect/apsb21-66.html(psirt@adobe.com)
https://helpx.adobe.com/security/products/connect/apsb21-66.html(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.