CVE-2021-21085

Name of the Vulnerable Software and Affected Versions Adobe Connect versions 11.0.7 and earlier

Description The issue is related to an Input Validation vulnerability in the export feature of Adobe Connect. An attacker could exploit this vulnerability by injecting a payload into an online event form or registration form, potentially achieving arbitrary code execution in the context of the admin account if the victim exports and opens the data on their local machine.

Recommendations For Adobe Connect versions 11.0.7 and earlier, consider disabling the export feature temporarily to prevent exploitation until a patch is available. Restrict access to the export functionality to minimize the risk of code execution. Avoid using the export feature with untrusted data until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.