First published: Fri Nov 17 2023(Updated: )
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to Remote Code Execution by an admin authenticated attacker. Exploitation of this issue does not require user interaction.
|Affected Software||Affected Version||How to fix|
|Adobe RoboHelp Server||<=11.4|
CVE-2023-22273 is a vulnerability in Adobe RoboHelp Server that allows for a directory traversal remote code execution attack.
CVE-2023-22273 affects Adobe RoboHelp Server versions 11.4 and earlier by allowing an admin authenticated attacker to execute remote code through a directory traversal vulnerability.
No, exploitation of CVE-2023-22273 does not require user interaction.
CVE-2023-22273 has a severity rating of 7.2, which is considered high.
To fix the CVE-2023-22273 vulnerability, users should update to a version of Adobe RoboHelp Server that is later than 11.4.