Saphira CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Saphira CVE published 2023-09-15

CVE-2023-4664

CVE-2023-4664 is a high-severity privilege escalation vulnerability affecting Adobe Connect versions before 9.0. The issue is described as incorrect default permissions, and the NVD record maps it to CWE-276. Organizations running affected versions should treat it as a serious access-control weakness because successful abuse could allow a low-privileged user to gain higher privileges. The CVE was publishe [truncated]

CRITICAL Saphira CVE published 2023-09-15

CVE-2023-4662

CVE-2023-4662 is a critical flaw in Adobe Connect as represented in the official NVD record, affecting versions before 9.0. The issue is described as execution with unnecessary privileges and remote code inclusion, with a CVSS 3.1 score of 9.8 and no privileges or user interaction required.