Vulnerabilities > CVE-2024-54051 - Unspecified vulnerability in Adobe Connect

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

adobe

NVD

Published: 2024-12-10

Updated: 2025-01-15

Summary

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe Connect 12.0 Adobe Connect 12.1 Adobe Connect 12.1.5 Adobe Connect 12.2 Adobe Connect 12.3 Adobe Connect 12.4 Adobe Connect 12.4.1 Adobe Connect 12.5 Adobe Connect 12.5.1 Adobe Connect 12.6 Adobe Connect 12.6.1 Adobe Connect - Adobe Connect 1.0.0.1 Adobe Connect 6.0 Adobe Connect 6.1 Adobe Connect 6.2 Adobe Connect 6.3 Adobe Connect 7.0 Adobe Connect 7.2 Adobe Connect 7.3 Adobe Connect 7.5 Adobe Connect 8.0 Adobe Connect 8.1 Adobe Connect 8.2 Adobe Connect 8.2.1 Adobe Connect 8.2.2 Adobe Connect 9.0 Adobe Connect 9.0.2 Adobe Connect 9.0.3 Adobe Connect 9.1 Adobe Connect 9.1.2 Adobe Connect 9.2 Adobe Connect 9.3 Adobe Connect 9.4.1 Adobe Connect 9.4.2 Adobe Connect 9.5 Adobe Connect 9.5.2 Adobe Connect 9.5.3 Adobe Connect 9.5.4 Adobe Connect 9.5.5 Adobe Connect 9.5.6 Adobe Connect 9.5.7 Adobe Connect 9.6 Adobe Connect 9.6.1 Adobe Connect 9.6.2 Adobe Connect 9.7 Adobe Connect 9.7.5 Adobe Connect 9.8 Adobe Connect 9.8.1 Adobe Connect 10 Adobe Connect 10.1 Adobe Connect 10.2 Adobe Connect 10.5 Adobe Connect 10.6 Adobe Connect 10.6.1 Adobe Connect 10.6.2 Adobe Connect 10.8 Adobe Connect 11.0 Adobe Connect 11.0.5 Adobe Connect 11.0.6 Adobe Connect 11.0.7 Adobe Connect 11.2 Adobe Connect 11.2.1 Adobe Connect 11.2.2	64

References

https://helpx.adobe.com/security/products/connect/apsb24-99.html