CVE-2018-12805Uncontrolled Search Path Element in Adobe Connect

CWE-427Uncontrolled Search Path Element3 documents3 sources
Severity
9.8CRITICALNVD
EPSS
1.9%
top 16.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Connect
Timeline
PublishedJul 20
Latest updateMay 13

Description

Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability. Successful exploitation could lead to privilege escalation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

NVDadobe/connect9.7.5

🔴Vulnerability Details

2
GHSA
GHSA-fj2c-82j7-pvqx: Adobe Connect versions 92022-05-13
CVEList
CVE-2018-12805: Adobe Connect versions 92018-07-20
CVE-2018-12805 — Uncontrolled Search Path Element | cvebase