CVE-2024-54043
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 79
Summary
CVE-2024-54043 is a newly disclosed Cross-Site Scripting (XSS) vulnerability that affects Adobe Connect versions 12.6 and 11.4.7, as well as older releases. This issue allows an attacker to execute malicious JavaScript code in a victim's browser by convincing them to visit a specially crafted URL linked to a vulnerable page. Successful exploitation could result in data theft, unauthorized actions, or other forms of security compromise. Users are advised to update their Adobe Connect installations to the latest version as soon as possible to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Connect
Affected Vendors
- Adobe