CVE-2017-11288: XSS
First published: Sat Dec 09 2017(Updated: )
An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Connect | <=9.6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Adobe Connect vulnerability?
The vulnerability ID for this Adobe Connect vulnerability is CVE-2017-11288.
What is the severity of CVE-2017-11288?
CVE-2017-11288 has a severity rating of 6.1 (Medium).
How does CVE-2017-11288 affect Adobe Connect?
CVE-2017-11288 allows for a reflected cross-site scripting vulnerability in Adobe Connect 9.6.2 and earlier versions, potentially leading to information disclosure.
How can I fix the CVE-2017-11288 vulnerability?
To fix the CVE-2017-11288 vulnerability, it is recommended to update Adobe Connect to a version that is not affected by this vulnerability.
Where can I find more information about CVE-2017-11288?
More information about CVE-2017-11288 can be found on the Adobe Security Bulletin (APSB17-35) and security-focused websites like SecurityFocus and SecurityTracker.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- vendor/adobe
- canonical/adobe connect
- version/adobe connect/9.6.2