Unrated severityNVD Advisory· Published Mar 12, 2021· Updated Apr 23, 2025
Adobe Connect CSV injection via export feature could lead to code execution
CVE-2021-21085
Description
Adobe Connect version 11.0.7 (and earlier) is affected by an Input Validation vulnerability in the export feature. An attacker could exploit this vulnerability by injecting a payload into an online event form and achieve code execution if the victim exports and opens the data on their local machine.
Affected products
2<=11.0.7+ 1 more
- (no CPE)range: <=11.0.7
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/connect/apsb21-19.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.