Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ADOBE_CONNECT_APSB23-33.NASL
HistorySep 12, 2023 - 12:00 a.m.

Adobe Connect <= 12.3.0 Multiple Arbitrary Code Execution Vulnerabilities (APSB23-33)

2023-09-1200:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
6
adobe connect
arbitrary code execution
cross-site scripting
cve-2023-29305
cve-2023-29306
security advisory

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

20.9%

JSON

The version of Adobe Connect installed on the remote host is prior to 12.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-33 advisory.

  • Cross-site Scripting (Reflected XSS) (CWE-79) potentially leading to Arbitrary code execution (CVE-2023-29305, CVE-2023-29306)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(181272);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/16");

  script_cve_id("CVE-2023-29305", "CVE-2023-29306");
  script_xref(name:"IAVB", value:"2023-B-0069");

  script_name(english:"Adobe Connect <= 12.3.0 Multiple Arbitrary Code Execution Vulnerabilities (APSB23-33)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server contains an application that is affected by
multiple arbitrary code execution vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe Connect installed on the remote host is prior to 12.4.1. It is, therefore, affected by multiple
vulnerabilities as referenced in the apsb23-33 advisory.

  - Cross-site Scripting (Reflected XSS) (CWE-79) potentially leading to Arbitrary code execution
    (CVE-2023-29305, CVE-2023-29306)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/connect/apsb23-33.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe Connect version 12.4.1 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-29306");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(79);

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/09/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/09/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/12");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:connect");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("adobe_connect_detect.nbin");
  script_require_keys("installed_sw/Adobe Connect");
  script_require_ports("Services/www", 80, 443);

  exit(0);
}

include('vcf.inc');
include('http.inc');

var port = get_http_port(default:80);

var app_info = vcf::get_app_info(app:'Adobe Connect', port:port, webapp:TRUE);

var constraints = [
  { 'min_version' : '12.0.0', 'max_version' : '12.3.0', 'fixed_version' : '12.4.1' }
];

vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    severity:SECURITY_WARNING,
    flags:{'xss':TRUE}
);
VendorProductVersionCPE
adobeconnectcpe:/a:adobe:connect

Related

adobe 1
prion 2
cvelist 2
cnvd 2
cve 2
nvd 2
thn 1
adobe
adobe
APSB23-33 : Security update available for Adobe Connect
2023-09-12 00:00:00
prion
prion
Cross site scripting
2023-09-13 09:15:00
Cross site scripting
2023-09-13 09:15:00
cvelist
cvelist
CVE-2023-29306 Adobe Connect Reflected Cross-Site Scripting (XSS) Arbitrary code execution
2023-09-13 08:27:18
CVE-2023-29305 Adobe Connect Reflected Cross-Site Scripting (XSS) Arbitrary code execution
2023-09-13 08:27:19
cnvd
cnvd
Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2023-82285)
2023-09-18 00:00:00
Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2023-82286)
2023-09-18 00:00:00
cve
cve
CVE-2023-29306
2023-09-13 09:15:15
CVE-2023-29305
2023-09-13 09:15:15
nvd
nvd
CVE-2023-29306
2023-09-13 09:15:15
CVE-2023-29305
2023-09-13 09:15:15
thn
thn
Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability
2023-09-13 02:57:00

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

20.9%

JSON
Related for ADOBE_CONNECT_APSB23-33.NASL
adobe1prion2cvelist2cnvd2cve2nvd2thn1