Adobe Connect CVE-2018-12804 Authentication Bypass Vulnerability

Bugtraq ID:	104697
Class:	Design Error
CVE:	CVE-2018-12804
Remote:	Yes
Local:	No
Published:	Jul 10 2018 12:00AM
Updated:	Jul 10 2018 12:00AM
Credit:	The vendor reported this issue.
Vulnerable:	Adobe Connect 9.7.5 Adobe Connect 9.6.2 Adobe Connect 9.6.1 Adobe Connect 9.5.7 Adobe Connect 9.5.6 Adobe Connect 9.7 Adobe Connect 9.5.3 Adobe Connect 9.5.2 Adobe Connect 9.4.2 Adobe Connect 9.4 Adobe Connect 9.3
Not Vulnerable:	Adobe Connect 9.8.1

Adobe Connect CVE-2018-12804 Authentication Bypass Vulnerability

Adobe Connect is prone to remote authentication-bypass vulnerability.

An attacker can exploit this issue to bypass the authentication mechanism and obtain sensitive information. This may aid in further attacks.

Adobe Connect 9.7.5 and prior versions are vulnerable.

Adobe Connect CVE-2018-12804 Authentication Bypass Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Adobe Connect CVE-2018-12804 Authentication Bypass Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Adobe Connect CVE-2018-12804 Authentication Bypass Vulnerability

References:

• Adobe Homepage (Adobe)
  
• APSB18-22: Security updates available for Adobe Connect | APSB18-22 (Adobe)