What is the CVSS score of EUVD-2026-22667?

EUVD-2026-22667 has a CVSS 3.1 base score of 9.6 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H. EPSS exploitation probability: 1.5%.

Which versions of Adobe Connect are affected by EUVD-2026-22667?

Adobe Connect versions 12.10 and earlier contain a critical remote code execution vulnerability (CVE-2026-27303, CVSS 9.6) that allows unauthenticated attackers to execute arbitrary code through…

Adobe Connect EUVD-2026-22667

| CVE-2026-27303 CRITICAL

Deserialization of Untrusted Data (CWE-502)

2026-04-14 adobe

GHSA-p85r-hffw-65q4

RCE Deserialization Adobe

9.6

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 28, 2026 - 03:27 vuln.today

v2 (cvss_changed)

Re-analysis Queued

Apr 22, 2026 - 19:37 vuln.today

cvss_changed

Analysis Generated

Apr 14, 2026 - 19:39 vuln.today

EUVD ID Assigned

Apr 14, 2026 - 18:01 euvd

EUVD-2026-22667

Analysis Generated

Apr 14, 2026 - 18:01 vuln.today

CVE Published

Apr 14, 2026 - 17:33 nvd

CRITICAL 9.6

DescriptionNVD

Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed.

AnalysisAI

Remote code execution in Adobe Connect 12.10 and earlier (including 2025.3) allows unauthenticated attackers to execute arbitrary code by exploiting unsafe deserialization. Attack requires no user interaction despite UI:R in CVSS vector, with scope change enabling container escape or privilege escalation beyond the application context. …

RemediationAI

Within 24 hours: Identify all Adobe Connect instances and their versions in your environment; consult Adobe security advisory APSB26-37 for patch availability and compatibility. Within 7 days: Apply vendor patch APSB26-37 to all affected Adobe Connect deployments (version 12.10 and earlier, including 2025.3); verify patch installation across all systems. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

EUVD-2026-22667 vulnerability details – vuln.today

Back

Adobe Connect EUVD-2026-22667

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code