PT-2026-40341 · Adobe · Connect
Published
2026-05-12
·
Updated
2026-05-29
·
CVE-2026-34659
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Connect versions 2025.9.15 and earlier
Adobe Connect versions 2025.8.157 and earlier
Description
Deserialization of Untrusted Data occurs when an application processes data from an untrusted source without sufficient validation, potentially allowing an attacker to execute arbitrary code in the context of the current user. Exploitation requires user interaction, such as visiting a maliciously crafted URL or interacting with a compromised web page.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Connect