CVEブラウザに戻る

CVE-2017-11291

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0200%

EPSS Percentile9.13th

Published2017年12月9日

Last Modified2026年5月13日

Vulnerability Description

An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.

Affected Platforms (CPE)

📦

Adobe

Connect

<= 9.6.2

References & Advisories

🔗 http://www.securityfocus.com/bid/101838

🔗 http://www.securitytracker.com/id/1039799

🔗 https://helpx.adobe.com/security/products/connect/apsb17-35.html

🔗 http://www.securityfocus.com/bid/101838

🔗 http://www.securitytracker.com/id/1039799

🔗 https://helpx.adobe.com/security/products/connect/apsb17-35.html

関連する脆弱性情報

CVE-2019-420210.0

IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable to command injection. An attacker with a specially crafted requ...

CVE-2019-1151010.0

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated rem...

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...