CVE-2026-34617

Name of the Vulnerable Software and Affected Versions Adobe Connect versions 2025.3 and 12.10 and earlier

Description A Cross-Site Scripting (XSS) issue allows a low-privileged attacker to inject malicious scripts into a web page. This could lead to privilege escalation, potentially granting the attacker elevated access or control over a victim's account or session. Successful exploitation requires user interaction, such as visiting a maliciously crafted URL or interacting with a compromised web page.

Recommendations Update Adobe Connect to a version later than 2025.3 and 12.10.