Insecure Library Loading Vulnerability in Adobe Connect by Adobe
CVE-2018-12805

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Connect 9.7.5 And Earlier
Vendor: CVE Published:; 20 July 2018

What is CVE-2018-12805?

Adobe Connect versions 9.7.5 and earlier are vulnerable to an Insecure Library Loading issue, which may allow attackers to exploit the system for privilege escalation. Attackers can leverage this vulnerability to execute potentially malicious code with elevated permissions, posing significant risks to the security and integrity of affected systems. It is crucial for users of Adobe Connect to apply recommended updates and follow security best practices to mitigate the threat.

Affected Version(s)

Adobe Connect 9.7.5 and earlier Adobe Connect 9.7.5 and earlier

References

http://www.securityfocus.com/bid/104696

vdb-entryx_refsource_BID

https://helpx.adobe.com/security/products/connect/apsb18-...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 20, 2018
Vulnerability Reserved
Jun 25, 2018