CVE-2021-36062

Summary

Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

Affected Software

VendorProductVersion RangeStatus
AdobeConnectunspecified <= 11.2.2affected
AdobeConnectunspecified <= Noneaffected

Weaknesses

  • CWE-79: Cross-site Scripting (Reflected XSS) (CWE-79)

ADP Enrichment

CVE Program Container

Additional References

References