Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.6
Adobe Connect: Untrusted Data Can Run Malicious Code as Current User
CVE-2026-27303
Summary
Adobe Connect versions 2025.3 and earlier have a security flaw that allows a hacker to run malicious code on your computer using the privileges of the person currently logged in. This can happen without your knowledge or consent. Update to the latest version to fix this issue.
Original title
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. ...
Original description
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed.
nvd CVSS3.1
9.6
Vulnerability type
CWE-502
Deserialization of Untrusted Data
Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026