Lucene search

AdobeAPSB20-69

HistoryNov 10, 2020 - 12:00 a.m.

APSB20-69 Security update available for Adobe Connect

2020-11-1000:00:00

helpx.adobe.com

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

34.4%

JSON

Adobe will be releasing security updates for Adobe Connect during the week of November 9, 2020. These updates address reflected cross-site scripting vulnerabilities rated important. Successful exploitation could lead to arbitrary JavaScript execution within the context of the victim’s browser.

Affected configurations

Vulners

Node

adobeconnectRange≤11

CPENameOperatorVersion
adobe connectle11

CPE	Name	Operator	Version
	adobe connect	le	11

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

34.4%

JSON

Related for APSB20-69