CVE-2016-7882

Опубликовано: 15 дек. 2016

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

Adobe Experience Manager versions 6.2 and earlier have an input validation issue in the WCMDebug filter that could be used in cross-site scripting attacks.

Ссылки

http://www.securityfocus.com/bid/94869
http://www.securitytracker.com/id/1037464
https://helpx.adobe.com/security/products/experience-manager/apsb16-42.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/94869
http://www.securitytracker.com/id/1037464
https://helpx.adobe.com/security/products/experience-manager/apsb16-42.html
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:adobe:experience_manager:*:*:*:*:*:*:*:*

Версия до 6.2.0 (включая)

EPSS

Процентиль: 79%

0.01252

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-cqq2-vmgp-qv33