CVE-2022-30670

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require...

Authorization

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require...

CVE-2022-30670

Adobe RoboHelp Server are affected in versions earlier than RHS 11 Update 3 by an Improper Authorization vulnerability that can allow an authenticated attacker to escalate to full administrator privileges without user interaction. The issue, documented as CVE-2022-30670, has been addressed by Ado...

CVE-2022-30670 Escalate Privileges to Server Admin - Robohelp Server

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require...

Adobe RoboHelp Server < 11 Update 3 Privilege Escalation (APSB22-31)

The version of Adobe RoboHelp Server installed on the remote host is affected a privilege escalation vulnerability. An authenticated, remote attacker can exploit this to gain privileges. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...

Adob​​e RoboHelp 授权问题漏洞

Adobe RoboHelp is a help authoring tool developed and distributed for Windows by Adobe. An authorization issue vulnerability exists in Adobe RoboHelp and Adobe RoboHelp Server 11 Update 3 and earlier versions, which stems from a vulnerability that allows a user with non-administrative privileges ...

Vulnerability fixed in Adobe RoboHelp Server

Adobe has fixed a vulnerability in RoboHelp Server. A malicious party, with prior authentication and user authorization, could potentially exploit the vulnerability to grant themselves elevated privileges. The malicious party can through manipulation of API requests, perform actions that are...

CVE-2022-30670

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require...

APSB22-31 : Security hotfix available for RoboHelp Server

Adobe has released a security hotfix for RoboHelp Server 11 Update 3, and prior releases. This hotfix resolves a security vulnerability that allows end users with non-administrative privileges to manipulate API requests and elevate their account privileges to that of a server administrator. This...

PT-2022-2991 · Adobe · Robohelp Server

Name of the Vulnerable Software and Affected Versions: RoboHelp Server versions earlier than 11 Update 3 Description: The issue is related to an Improper Authorization vulnerability, which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve...

The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server lies in its ability to load files beyond the expected directory limits, allowing attackers to execute arbitrary code.

The vulnerability of server-based corporate software for project monitoring and management in Adobe RoboHelp Server relates to the ability to load arbitrary files beyond the expected directory structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the...

The vulnerability of the RoboHelp software in publishing content related to manuals, policies, and knowledge bases, due to the uncontrolled element of the search path. This vulnerability allows attackers to exploit their privileges.

The vulnerability of the RoboHelp software for publishing content such as help documents, policies, and knowledge bases is related to an uncontrollable element of the search process. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

Adobe RoboHelp Server Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe RoboHelp Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the RoboHelp server. When parsing the fileName parameter, the process does not properl...

Adobe RoboHelp Server < 2020.0.2 Arbitrary Code Execution (APSB21-87)

The version of Adobe RoboHelp Server installed on the remote host is affected an arbitrary code execution vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands on an affected system. Note that Nessus has not tested for this iss...

Adobe RoboHelp 缓冲区错误漏洞

Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. a path traversal vulnerability exists in Adobe RoboHelp Server RHS2020.0.1 and earlier versions. An attacker could exploit this vulnerability to execute arbitrary code...

Adobe RoboHelp Server Path Traversal Vulnerability (CNVD-2021-94145)

Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. a path traversal vulnerability exists in Adobe RoboHelp Server RHS2020.0.1 and earlier versions. An attacker could exploit this vulnerability to execute arbitrary code...

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessa...

APSB21-87: Security hotfix available for RoboHelp Server

Adobe has released a security hotfix for RoboHelp Server. This update resolves a vulnerability rated critical. Successful exploitation could lead to arbitrary code execution in the context of the current user...

The vulnerability of the server-based corporate software for project monitoring and management, RoboHelp Server, arises due to an incorrect path limitation to the restricted access catalog. This allows attackers to read arbitrary files.

The vulnerability of server-based corporate software for project monitoring and management with RoboHelp Server exists due to an incorrect limitation on the path to the restricted access catalog. Exploiting this vulnerability allows a malicious actor to read arbitrary files using a specially...

CVE-2021-28588

Adobe RoboHelp Server version 2019.0.9 and earlier is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...