VYPR
Unrated severityNVD Advisory· Published Mar 12, 2021· Updated Apr 23, 2025

Adobe Connect CSV injection via export feature could lead to code execution

CVE-2021-21085

Description

Adobe Connect version 11.0.7 (and earlier) is affected by an Input Validation vulnerability in the export feature. An attacker could exploit this vulnerability by injecting a payload into an online event form and achieve code execution if the victim exports and opens the data on their local machine.

Affected products

2
  • Adobe Inc./Connectllm-fuzzy2 versions
    <=11.0.7+ 1 more
    • (no CPE)range: <=11.0.7
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.