CVE-2021-40721

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
15/10/2021
Last modified:
04/02/2022

Description

Adobe Connect version 11.2.3 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:adobe:connect:*:*:*:*:*:*:*:* 11.0 (including) 11.2.3 (including)


References to Advisories, Solutions, and Tools