Page 12 of 62 results (0.006 seconds)

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2016-4118

https://notcve.org/view.php?id=CVE-2016-4118

Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors. Vulnerabilidad de ruta de búsqueda no fiable en el instalador en Adobe Connect Add-In en versiones anteriores a la 11.9.976.291 en Windows permite que usuarios locales obtengan privilegios mediante vectores sin especificar. • http://www.securityfocus.com/bid/90815 http://www.securitytracker.com/id/1035958 https://helpx.adobe.com/security/products/connect/apsb16-17.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-0950

https://notcve.org/view.php?id=CVE-2016-0950

Adobe Connect before 9.5.2 allows remote attackers to spoof the user interface via unspecified vectors. Adobe Connect en versiones anteriores a 9.5.2 permite a atacantes remotos suplantar la interfaz de usuario a través de vectores no especificados. • http://www.securitytracker.com/id/1034978 https://helpx.adobe.com/security/products/connect/apsb16-07.html • CWE-20: Improper Input Validation CWE-254: 7PK - Security Features •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-0949

https://notcve.org/view.php?id=CVE-2016-0949

Adobe Connect before 9.5.2 allows remote attackers to have an unspecified impact via a crafted parameter in a URL. Adobe Connect en versiones anteriores a 9.5.2 permite a atacantes remotos tener un impacto no especificado a través de un parámetro manipulado en una URL. • http://www.securitytracker.com/id/1034978 https://helpx.adobe.com/security/products/connect/apsb16-07.html •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-0948

https://notcve.org/view.php?id=CVE-2016-0948

Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Vulnerabilidad de CSRF en Adobe Connect en versiones anteriores a 9.5.2 permite a atacantes remotos secuestrar la autenticación de víctimas no especificadas a través de vectores desconocidos. • http://www.securitytracker.com/id/1034978 https://helpx.adobe.com/security/products/connect/apsb16-07.html • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 4.3EPSS: 2%CPEs: 1EXPL: 0

CVE-2015-0344

https://notcve.org/view.php?id=CVE-2015-0344

Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la aplicación web en Adobe Connect anterior a 9.4 permite a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a través de vectores no especificados. • http://www.securitytracker.com/id/1032567 https://helpx.adobe.com/adobe-connect/release-note/connect-94-release-notes.html#Issues%20Resolved • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •