CyberSec.Space Logo
Back to CVE Browser

CVE-2017-11291

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0200%
EPSS Percentile9.13th
PublishedDec 9, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.

Affected Platforms (CPE)

πŸ“¦
Adobe

Connect

<= 9.6.2

References & Advisories

πŸ”— http://www.securityfocus.com/bid/101838
πŸ”— http://www.securitytracker.com/id/1039799
πŸ”— https://helpx.adobe.com/security/products/connect/apsb17-35.html
πŸ”— http://www.securityfocus.com/bid/101838
πŸ”— http://www.securitytracker.com/id/1039799
πŸ”— https://helpx.adobe.com/security/products/connect/apsb17-35.html

Related Vulnerabilities

CVE-2019-420210.0

IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable to command injection. An attacker with a specially crafted requ...

CVE-2019-1151010.0

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated rem...

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...