Adobe Connect version 11.2.2 (and earlier) is affected by... · CVE-2021-40719 · GitHub Advisory Database · GitHub

Adobe Connect version 11.2.2 (and earlier) is affected by...

Critical severity Unreviewed Published May 24, 2022 to the GitHub Advisory Database • Updated Jan 30, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Adobe Connect version 11.2.2 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary method invocation when AMF messages are deserialized on an Adobe Connect server. An attacker can leverage this to execute remote code execution on the server.

References

Published by the National Vulnerability Database

Oct 21, 2021

Published to the GitHub Advisory Database May 24, 2022

Last updated Jan 30, 2023