CVE-2017-11290

An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has…

adobe·CWE-1021·Published 2017-12-09

CVSS

—

EPSS

0.03

KEV

Exploits

cve.orgen

269 chars

An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has been resolved by adding a feature that enables Connect administrators to protect users from UI redressing (or clickjacking) attacks.

NVDen

269 chars

NVDes

335 chars

Se ha descubierto un problema en Adobe Connect 9.6.2 y anteriores. Existe una vulnerabilidad de secuestro de clicks (clickjacking o UI Redress). Este problema ha sido resuelto añadiendo una característica que permite que los administradores Connect protejan a los usuarios ante ataques de secuestro de clic (clickjacking o UI Redress).

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
3.0	Primary	NVD	6.1	2.8	2.7	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N