CVE-2021-36063

Summary

Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

Affected Software

VendorProductVersion RangeStatus
AdobeConnectunspecified <= 11.2.2affected
AdobeConnectunspecified <= Noneaffected

Weaknesses

  • CWE-79: Cross-site Scripting (Reflected XSS) (CWE-79)

ADP Enrichment

CVE Program Container

Additional References

References