CVE-2025-49552

Name of the Vulnerable Software and Affected Versions Adobe Connect versions 12.9 and earlier

Description A DOM-based Cross-Site Scripting (XSS) issue exists in Adobe Connect. A high-privileged attacker could exploit this to execute malicious scripts in a victim’s browser. Exploitation requires a victim to navigate to a specially crafted web page. A successful attack could lead to session takeover, impacting confidentiality and integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.